tag:support.arachni-scanner.com,2012-07-01:/discussions/problems/3865-arachni-login_scriptArachni: Discussion 2015-09-30T14:53:19Ztag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-05T11:29:44Z2015-08-05T11:29:44ZArachni login_script<div><p>Can you print the body of the login page right after you load
it?<br>
Something may be preventing it from loading properly.</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-05T16:35:47Z2015-08-05T16:37:10ZArachni login_script<div><p>Hello Tasos,<br>
Thank you for your prompt response. You're right...when I do a puts
browser.html<br>
I get...</p>
<pre>
<code> [*] Initializing...
[*] Preparing plugins...
[*] ... done.
[~] Login script: System paused.
[~] Login script: Running the script.
<html><head></head><body></body></html></code>
</pre>
<p>Now, if I do the same outside arachni and run the script:</p>
<pre>
<code>$ ruby test1.rb
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns= ...
...</code>
</pre></div>Renatotag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-05T16:39:52Z2015-08-05T16:39:52ZArachni login_script<div><p>There may be a timeout somewhere or something like that. Can you
enable <code>--output-debug 3</code> and post the output
please?</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-05T16:53:15Z2015-08-05T16:53:15ZArachni login_script<div><p>Attached, just changed the hostname for obvious reasons :).
Thanks</p></div>Renatotag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-06T10:05:35Z2015-08-06T10:05:35ZArachni login_script<div><p>I'm not seeing the info that I expected, did you set debug level
to <code>3</code>?</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-06T16:07:50Z2015-08-06T16:10:19ZArachni login_script<div><pre>
<code>arachni/bin/arachni http://url --report-save-path scans_results/test.arf --scope-exclude-pattern=logout.aspx --plugin=login_script:script=auth/test.rb --session-check-url=http://urlafterauth --output-debug 3 --session-check-pattern='pattern2check' >
test 2>&1</code>
</pre>
<p>that is what I am using.</p></div>Renatotag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-08-06T16:16:01Z2015-08-06T16:16:01ZArachni login_script<div><p>Seems about right, although in the debug output there are no
HTTP requests being made, at all.<br>
There should have been at least one, requesting the login page from
your script.</p>
<p>Any chance you can send me the unmasked data in private in order
to reproduce the case?<br>
Something fishy is going on.</p></div>Tasos Laskostag:support.arachni-scanner.com,2012-07-01:Comment/375690582015-09-30T14:53:18Z2015-09-30T14:53:18ZArachni login_script<div><p>Closing due to lack of feedback, please provide the requested
information if you'd like me to pursue this further.</p></div>Tasos Laskos