Join GitHub today
Arachni Scanner throws #<TypeError: Coercion error: ":".to_ary => Array failed> #2074
Arachni (github.com/arachni) is a high-end eventmachine and typhoeus based web app security assessment tool written in Ruby. I'm finding multiple issues preventing the tool from working, most of which will likely end up here.
To start off - the base scanner itself throws the error referenced in the subject line when completing a scan. Below is the output of a scan launched against my home router (the router died from the scan and timed out at the end).
Line 43 in uniformity.rb (the line causing this) reads as:
Other issues (so far) include crashes in forked processes and an inability to start a proper RPCD as a result.
Reproduction requires installation of Arachni from the experimental branch with all the associated gems. Would suggest doing this in its own gemset as it does bring in a considerable number of gems.
[-] Blind (timing) SQL injection: Max waiting time exceeded, the server may be dead.
I just tried with the current HEAD of arachni and rubinius and it works for me
So the repo is needed to reproduce that.