Unable to login using AutoLogin plugin
Hello:
I am using the plugin via the webUI like this:
The URL that contains the login form. *: login url
Form parameters to submit. ( username=user&password=pass ) *:
ctl00_cphMainContent_txt_Username=user1&ctl00_cphMainContent_txt_Password=123go
A pattern which will be used to verify a successful login. For
example, if a logout link only appears when a user is logged in
then it can be a perfect choice. *
My Account
but does not work. It only scans the first page which redirects to the login page.
Also, i tried the example site but i get error...
EndritP@ISG-LT002 /usr/bin
$ arachni http://testfire.net
--plugin=autologin:url=http://testfire.net/bank/login.aspx,parameters='uid=jsmith&...
Off|MY ACCOUNT' --scope-exclude-pattern=logout Arachni - Web
Application Security Scanner Framework v0.4.1.3
Author: Tasos "Zapotek" Laskos [email blocked]
(With the support of the community and the Arachni Team.)
Website: http://arachni-scanner.com Documentation: http://arachni-scanner.com/wiki
unrecognized option `--scope-exclude-pattern=logout'
EndritP@ISG-LT002 /usr/bin
$ arachni http://testfire.net
--plugin=autologin:url=http://testfire.net/bank/login.aspx,parameters='uid=jsmith&...
Off|MY ACCOUNT' Arachni - Web Application Security Scanner
Framework v0.4.1.3
Author: Tasos "Zapotek" Laskos [email blocked]
(With the support of the community and the Arachni Team.)
Website: http://arachni-scanner.com Documentation: http://arachni-scanner.com/wiki
[~] No modules were specified. [~] -> Will run all mods.
[~] No audit options were specified. [~] -> Will audit links, forms and cookies.
[*] Initialising... [-] Invalid options for component: autologin
* Empty required value: params => * Expected type: string [-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/component/manager.rb:195:in
prep_opts' [-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/plugin/manager.rb:97:inblock
in run' [-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/plugin/manager.rb:78:in
each' [-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/plugin/manager.rb:78:inrun'
[-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/framework.rb:604:in
prepare' [-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/framework.rb:184:inrun'
[-]
/usr/lib/ruby/gems/1.9.1/gems/arachni-0.4.1.3/lib/arachni/ui/cli/cli.rb:104:in
`block in run'
EndritP@ISG-LT002 /usr/bin
$
Some help is appreciated.
Thanks
Comments are currently closed for this discussion. You can start a new one.
Keyboard shortcuts
Generic
| ? | Show this help |
|---|---|
| ESC | Blurs the current field |
Comment Form
| r | Focus the comment reply box |
|---|---|
| ^ + ↩ | Submit the comment |
You can use Command ⌘ instead of Control ^ on Mac
Support Staff 1 Posted by Tasos Laskos on 17 Nov, 2015 01:14 AM
This version is ancient and no longer supported, please grab the latest one.
Based on your comment on the blog post, I realise that you couldn't use the new Windows package in the nightlies due to a bug, but I just fixed it and updated the package.
Still, the Windows package is experimental at this point so if you come across any issues please let me know and I'll sort them out.
Cheers
Tasos Laskos closed this discussion on 17 Nov, 2015 01:14 AM.