Created
October 18, 2022 03:03
-
-
Save StackZeroSec/557c35b59bfbcd1aa83870cfc13af8b9 to your computer and use it in GitHub Desktop.
Utils to login into DVWA for performing attacks through python requests library
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| from bs4 import BeautifulSoup | |
| from enum import Enum | |
| import string | |
| import urllib | |
| class SecurityLevel(Enum): | |
| LOW = "low" | |
| MEDIUM = "medium" | |
| HIGH = "high" | |
| IMPOSSIBLE = "impossible" | |
| class CSRFManager: | |
| @staticmethod | |
| def set_csrf_token(func): | |
| def wrapper(*args, **kwargs): | |
| user_token, url = CSRFManager.get_token(args[0]._session, args[1]) | |
| if user_token != None: | |
| args[0].user_token = user_token["value"] | |
| return func(*args, **kwargs) | |
| return wrapper | |
| @staticmethod | |
| def get_token(session:requests.Session, url:str): | |
| response = session.get(url) | |
| soup = BeautifulSoup(response.text, 'html.parser') | |
| user_token = soup.find("input", {"name": "user_token"}) | |
| return user_token, response.url | |
| class DVWASessionProxy: | |
| login_data = { | |
| "username": "admin", | |
| "password": "password", | |
| "Login": "Login" | |
| } | |
| def __init__(self, url): | |
| super().__init__() | |
| self._session = requests.Session() | |
| self.url = f"{url}/login.php" | |
| self.data = {} | |
| @property | |
| def security(self): | |
| return self._session.cookies.get_dict()["security"] | |
| @security.setter | |
| def security(self, security_level): | |
| self._session.cookies.pop("security") | |
| self._session.cookies.set("security", security_level.value) | |
| @property | |
| def user_token(self): | |
| return self.data["user_token"] | |
| @user_token.setter | |
| def user_token(self, value): | |
| self.data["user_token"] = value | |
| def __enter__(self): | |
| response = self.post(self.url, data= {**self.data, **DVWASessionProxy.login_data}) | |
| return self | |
| def get(self, url ,headers=None, params=None): | |
| response = self._session.get(url, headers=headers, params=params) | |
| return response | |
| @CSRFManager.set_csrf_token | |
| def post(self, url ,headers=None, data=None): | |
| response = self._session.post(url, headers=headers, data={**self.data, **data}) | |
| return response | |
| def __exit__(self, exc_type, exc_val, exc_tb): | |
| self._session.close() | |
| class DVWASQLiResponseParser: | |
| def __init__(self, response): | |
| self.response = response | |
| def get_interesting_value(self): | |
| soup = BeautifulSoup(self.response.content, 'html.parser') | |
| interesting_value = soup.find("pre") | |
| return interesting_value | |
| def check_presence(self, string): | |
| return string in self.get_interesting_value().text |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment