2015-10-23 11:38:44 -0400 -------------------------------------------------------------------------------- ENV: --- CPLUS_INCLUDE_PATH: "/opt/arachni/bin/../system/usr/include" XDG_VTNR: '7' XDG_SESSION_ID: '1' SSH_AGENT_PID: '1299' GEM_HOME: "/opt/arachni/system/gems" GPG_AGENT_INFO: "/run/user/0/keyring/gpg:0:1" VTE_VERSION: '3801' XDG_MENU_PREFIX: gnome- SHELL: "/bin/bash" TERM: xterm IRBRC: "/opt/arachni/bin/../system/usr/lib/ruby/.irbrc" LIBRARY_PATH: "/opt/arachni/bin/../system/usr/lib" GJS_DEBUG_OUTPUT: stderr WINDOWID: '31457291' MY_RUBY_HOME: "/opt/arachni/bin/../system/usr/lib/ruby" GJS_DEBUG_TOPICS: JS ERROR;JS LOG USER: root LD_LIBRARY_PATH: "/opt/arachni/bin/../system/usr/lib" LS_COLORS: 'rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.jpg=01;35:*.jpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.axv=01;35:*.anx=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.axa=00;36:*.oga=00;36:*.spx=00;36:*.xspf=00;36:' SSH_AUTH_SOCK: "/run/user/0/keyring/ssh" USERNAME: root SESSION_MANAGER: local/kali:@/tmp/.ICE-unix/1240,unix/kali:/tmp/.ICE-unix/1240 DESKTOP_SESSION: default PATH: "/opt/arachni/system/gems/bin:/opt/arachni/bin/../system/../bin:/opt/arachni/bin/../system/usr/bin:/opt/arachni/bin/../system/gems/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin" C_INCLUDE_PATH: "/opt/arachni/bin/../system/usr/include" PWD: "/opt/arachni/bin" ARACHNI_WEBUI_LOGDIR: "/opt/arachni/bin/../system/logs/webui" LANG: en_US.UTF-8 GDM_LANG: en_US.UTF-8 ARACHNI_FRAMEWORK_LOGDIR: "/opt/arachni/bin/../system/logs/framework" GDMSESSION: default HOME: "/opt/arachni/bin/../system/home/arachni" XDG_SEAT: seat0 SHLVL: '1' RAILS_ENV: production GNOME_DESKTOP_SESSION_ID: this-is-deprecated DYLD_LIBRARY_PATH: "/opt/arachni/bin/../system/usr/lib" LOGNAME: root XDG_SESSION_DESKTOP: default GEM_PATH: "/opt/arachni/bin/../system/gems" DBUS_SESSION_BUS_ADDRESS: unix:abstract=/tmp/dbus-HpWujFvBrz,guid=5b6501be1f4579e266872c5756265549 XDG_DATA_DIRS: "/usr/share/gnome:/usr/local/share/:/usr/share/" WINDOWPATH: '7' DISPLAY: ":0" XDG_RUNTIME_DIR: "/run/user/0" XDG_CURRENT_DESKTOP: GNOME RUBYLIB: "/opt/arachni/system/gems/gems/bundler-1.10.6/lib:/opt/arachni/bin/../system/usr/lib/ruby:/opt/arachni/bin/../system/usr/lib/ruby/site_ruby/2.2.0:/opt/arachni/bin/../system/usr/lib/ruby/2.2.0:/opt/arachni/bin/../system/usr/lib/ruby/2.2.0/x86_64-linux:/opt/arachni/bin/../system/usr/lib/ruby/site_ruby/2.2.0/x86_64-linux" RUBY_VERSION: ruby-2.2.2 XAUTHORITY: "/var/run/gdm3/auth-for-root-p5MWIo/database" RACK_ENV: development BUNDLE_GEMFILE: "/opt/arachni/system/arachni-ui-web/Gemfile" _ORIGINAL_GEM_PATH: "/opt/arachni/bin/../system/gems" BUNDLE_BIN_PATH: "/opt/arachni/system/gems/gems/bundler-1.10.6/bin/bundle" RUBYOPT: "-rbundler/setup" MANPATH: "/opt/arachni/system/gems/gems/kramdown-1.4.1/man" BUNDLE_ORIG_MANPATH: "/opt/arachni/system/gems/gems/kramdown-1.4.1/man" -------------------------------------------------------------------------------- OPTIONS: input: values: "(?i-mx:name)": arachni_name "(?i-mx:user)": arachni_user "(?i-mx:usr)": arachni_user "(?i-mx:pass)": 5543!%arachni_secret "(?i-mx:txt)": arachni_text "(?i-mx:num)": '132' "(?i-mx:amount)": '100' "(?i-mx:mail)": arachni@email.gr "(?i-mx:account)": '12' "(?i-mx:id)": '1' default_values: without_defaults: true force: false audit: parameter_values: true exclude_vector_patterns: [] include_vector_patterns: [] link_templates: [] links: true forms: true cookies: true headers: true with_both_http_methods: true cookies_extensively: true jsons: true xmls: true ui_forms: true ui_inputs: true browser_cluster: local_storage: {} wait_for_elements: {} pool_size: 6 job_timeout: 25 worker_time_to_live: 100 ignore_images: false screen_width: 1600 screen_height: 1200 session: {} http: user_agent: Arachni/v1.3.1 request_timeout: 10000 request_redirect_limit: 5 request_concurrency: 20 request_queue_size: 256 request_headers: {} response_max_size: 500000 cookies: {} scope: redundant_path_patterns: {} dom_depth_limit: 5 exclude_path_patterns: [] exclude_content_patterns: [] include_path_patterns: [] restrict_paths: [] extend_paths: [] url_rewrites: {} include_subdomains: true https_only: false datastore: token: db9be6b21868943fcb8b821a7e714e8a checks: - code_injection - code_injection_php_input_wrapper - code_injection_timing - csrf - file_inclusion - ldap_injection - no_sql_injection - no_sql_injection_differential - os_cmd_injection - os_cmd_injection_timing - path_traversal - response_splitting - rfi - session_fixation - source_code_disclosure - sql_injection - sql_injection_differential - sql_injection_timing - trainer - unvalidated_redirect - unvalidated_redirect_dom - xpath_injection - xss - xss_dom - xss_dom_script_context - xss_event - xss_path - xss_script_context - xss_tag - xxe - allowed_methods - backdoors - backup_directories - backup_files - captcha - common_admin_interfaces - common_directories - common_files - cookie_set_for_parent_domain - credit_card - cvs_svn_users - directory_listing - emails - form_upload - hsts - htaccess_limit - html_objects - http_only_cookies - http_put - insecure_client_access_policy - insecure_cookies - insecure_cors_policy - insecure_cross_domain_policy_access - insecure_cross_domain_policy_headers - interesting_responses - localstart_asp - mixed_resource - origin_spoof_access_restriction_bypass - password_autocomplete - private_ip - ssn - unencrypted_password_forms - webdav - x_frame_options - xst platforms: [] plugins: autologin: url: http://testhtml5.vulnweb.com/ parameters: username=admin&pass=admin check: Welcome admin | Logout autothrottle: content_types: exclude: text discovery: email_notify: to: #REDACTED# cc: '' bcc: '' from: #REDACTED# server_address: smtp.gmail.com server_port: '587' tls: 'on' username: #REDACTED# password: #REDACTED# domain: '' authentication: plain report: html healthmap: metrics: timing_attacks: uncommon_headers: uniformity: vector_collector: waf_detector: precision: '5' no_fingerprinting: false authorized_by: url: http://testhtml5.vulnweb.com/ [2015-10-23 11:38:44 -0400] [Arachni::Session::Error::FormNotFound] Login form could not be found with: {:url=>"http://testhtml5.vulnweb.com/", :inputs=>{"username"=>"admin", "pass"=>"admin"}} [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/session.rb:341:in `login_from_configuration' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/session.rb:237:in `block in login' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/utilities.rb:408:in `call' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/utilities.rb:408:in `exception_jail' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/session.rb:236:in `login' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/components/plugins/autologin.rb:41:in `run' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/plugin/manager.rb:75:in `block (3 levels) in run' [2015-10-23 11:38:44 -0400] /opt/arachni/system/gems/gems/arachni-1.3.2/lib/arachni/plugin/manager.rb:67:in `block (2 levels) in run' [2015-10-23 11:38:44 -0400] [2015-10-23 11:38:44 -0400] Parent: [2015-10-23 11:38:44 -0400] Arachni::Session [2015-10-23 11:38:44 -0400] Block: [2015-10-23 11:38:44 -0400] # [2015-10-23 11:38:44 -0400] Caller: [2015-10-23 11:38:44 -0400] -------------------------------------------------------------------------------- [2015-10-23 11:38:44 -0400] Could not find a form suiting the provided parameters.