Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

External Command Injection plugin link #412

Closed
7a opened this issue Apr 14, 2015 · 4 comments
Closed

External Command Injection plugin link #412

7a opened this issue Apr 14, 2015 · 4 comments
Labels
Easy Fix Enhancement

Comments

@7a
Copy link
Member

7a commented Apr 14, 2015

The following tool could be a nice addition to assist pentesters in manual exploitation.
I would suggest to add this as a link to an external command injection plugin:
https://github.com/stasinopoulos/commix

I don't think it would be smart to throw this at a website by default (would slow scans for nothing most of the time, these things are typically best when you find a promising page), although maybe we could have an "aggressive" mode where we do this in a future phase as an active plugin too.
@7a 7a added the Enhancement label Apr 14, 2015
@arunk-s
Copy link
Contributor

arunk-s commented Oct 29, 2015

@7a, Can you point me to the direction where changes would be required. I think I should start with this one.

@7a
Copy link
Member Author

7a commented Oct 30, 2015

Take a look at other external plugins, I believe around
plugins/web/external, there is a framework API that you can use to generate
the link, easy :) hugs
On 29 Oct 2015 14:45, "Arun Sori" notifications@github.com wrote:

@7a https://github.com/7a, Can you point me to the direction where
changes would be required. I think I should start with this one.


Reply to this email directly or view it on GitHub
#412 (comment).

@flabbergastedbd
Copy link
Contributor

Hey @arunk-s . Have a look at #162

arunk-s added a commit to arunk-s/owtf that referenced this issue Nov 27, 2015
@arunk-s
Fix issue owtf#412
628de4c 
Add External Command Injection Plugin Link
arunk-s added a commit to arunk-s/owtf that referenced this issue Nov 27, 2015
@arunk-s
Fix issue owtf#412
89d5a3e 
Add External Command Injection Link
viyatb added a commit that referenced this issue Dec 6, 2015
@viyatb
Merge pull request #522 from arunk-s/develop
ca1e05c 
Fix issue #412
@viyatb
Copy link
Member

viyatb commented Dec 6, 2015

Closing as fix merged in the develop branch.

@viyatb viyatb closed this as completed Dec 6, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Easy Fix Enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@7a @flabbergastedbd @arunk-s @viyatb