Permalink
Browse files

fixed issue with Chrome Hijack API, FuzzDB and WSDL creation tool

  • Loading branch information...
1 parent 64ca84f commit 9a947804cfb8046296e2424971d0aa3cb7d9d2d7 @DinisCruz DinisCruz committed Mar 7, 2016
@@ -10,6 +10,7 @@
using FluentSharp.WinForms;
using OpenQA.Selenium;
using OpenQA.Selenium.Chrome;
+using FluentSharp.Zip;
//O2File:API_Win32_Handle_Hijack.cs
//O2Ref:Selenium\net40\WebDriver.dll
@@ -35,10 +36,13 @@ public class API_Chrome_Hijack
public API_Chrome_Hijack()
{
- ChromeDriverDownloadLink = @"http://chromedriver.googlecode.com/files/chromedriver_win_26.0.1383.0.zip";
+ ChromeDriverDownloadLink = @"http://chromedriver.storage.googleapis.com/2.21/chromedriver_win32.zip";
WebDriver_Folder = @"Selenium\net40\WebDriver.dll".assembly().location().parentFolder();
ChromeDriver_Exe = WebDriver_Folder.pathCombine("chromedriver.exe");
ChromeOptions = new ChromeOptions();
+
+ ensureChromeDriverExists();
+
ChromeDriverService = ChromeDriverService.CreateDefaultService();
}
@@ -0,0 +1,34 @@
+//var topPanel = panel.clear().add_Panel();
+var topPanel = "Util - Real Chrome with REPL".popupWindow(1200,600);
+
+var replPanel = topPanel.add_GroupBox("C# Repl").add_Panel();
+var chromePanel = topPanel.insert_Right(replPanel.width() / 2 , "Chrome");
+var chromeDriver = chromePanel.parent().insert_Below(150,"Chrome WebDriver");
+
+var firstScript =
+@"chromeDriver.open(""http://www.google.com"");
+chromeDriver.FindElement(By.Name(""q""))
+ .SendKeys(""O2 Platform"");
+chromeDriver.FindElement(By.Name(""btnG""))
+ .Click();
+return ""done"";
+
+//using OpenQA.Selenium;
+//using O2.XRules.Database.APIs
+//O2Ref:WebDriver.dll
+//O2File:API_ChromeDriver.cs";
+
+var chromeHijack = new API_Chrome_Hijack()
+ .open_ChromeDriver();
+
+chromeHijack.ChromeDriver.script_Me(replPanel).set_Code(firstScript);
+var hijacked_Chrome = chromePanel.add_Handle_HijackGui(false)
+ .hijackProcessMainWindow(chromeHijack.ChromeProcess);
+var hijacked_ChromeDriver = chromeDriver.add_Handle_HijackGui(false)
+ .hijackProcessMainWindow(chromeHijack.ChromeDriverProcess);
+
+//O2File:API_Chrome_Hijack.cs
+//O2File:API_Win32_Handle_Hijack.cs
+
+//O2Ref:WebDriver.dll
+//using O2.XRules.Database.APIs
@@ -7,6 +7,8 @@
using FluentSharp.REPL.Utils;
using FluentSharp.WinForms;
using FluentSharp.WinForms.Controls;
+using FluentSharp.Web35.API;
+using FluentSharp.Zip;
namespace FluentSharp.CoreLib
{
@@ -21,8 +23,12 @@ public static void show()
treeView.add_Node("Error:FuzzDB Not installed");
else
{
- treeView.add_Node("XSS Payloads")
- .add_Nodes(fuzzDb.payloads_Xss());
+ treeView.add_Node("XSS Payloads").add_Nodes(fuzzDb.payloads_Xss());
+ treeView.add_Node("SQLi_Generic Payloads").add_Nodes(fuzzDb.payloads_SQLi_Generic());
+ treeView.add_Node("SQLi_SqlServer Payloads").add_Nodes(fuzzDb.payloads_SQLi_SqlServer());
+ treeView.add_Node("SQLi_MySql Payloads").add_Nodes(fuzzDb.payloads_SQLi_MySql());
+ treeView.add_Node("names list").add_Nodes(fuzzDb.lists_Names());
+
}
}
}
@@ -147,5 +153,11 @@ public static List<String> payloads_SQLi_MySql(this API_FuzzDB fuzzDB)
@"attack-payloads\sql-injection\exploit\mysql-read-local-files.txt");
return xssPayloads;
}
+
+ public static List<String> lists_Names(this API_FuzzDB fuzzDB)
+ {
+ var xssPayloads = fuzzDB.getPayloads(@"wordlists-user-passwd\names\namelist.txt");
+ return xssPayloads;
+ }
}
}
@@ -3,9 +3,11 @@
using FluentSharp.CoreLib;
using FluentSharp.REPL;
using FluentSharp.WinForms;
+using FluentSharp.Zip;
using OpenQA.Selenium.Chrome;
using OpenQA.Selenium.IE;
+
//O2Ref:Selenium\net40\WebDriver.dll
//O2File:API_Selenium.cs
@@ -8,7 +8,7 @@
using FluentSharp.CoreLib.API;
using FluentSharp.REPL;
using FluentSharp.WinForms;
-using FluentSharp.WinForms.Controls;
+using FluentSharp.WinForms.Controls;
using O2.XRules.Database.Languages_and_Frameworks.DotNet;
//O2Ref:FluentSharp.HtmlAgilityPack.WinForms.dll
@@ -139,7 +139,7 @@ public ascx_WSDL_Creation_and_Execution buildGui()
ExecutionResult.append_Line("Method Executed OK, here is the return value:");
ExecutionResult.append_Line(ResultObject.str().lineBeforeAndAfter());
ExecutionResult_Properties.show(ResultObject);
- ExecutionResult_TreeView.xmlShow(ResultObject.serialize());
+ //ExecutionResult_TreeView.xmlShow(ResultObject.serialize());
}
//catch(System.Web.Services.Protocols.SoapException ex)
//{

0 comments on commit 9a94780

Please sign in to comment.