or Create a profile

Home Questions

Export found vectors

Vojta Polasek's Avatar

Vojta Polasek

21 Jul, 2016 09:11 AM

Hi,
I would like to use Arachni as a crawler, because it can crawl HTML5 applications etc. I wanted to use the vector_collector plugin, but it does not seem to work. It simply does not produce anything, I tried to scan passive part of Wavsep. Is this the right plugin for me?
Is it somehow possible to export all vectors (forms, UI elements)?
thanks,
Vojta

  1. Support Staff 1 Posted by Tasos Laskos on 21 Jul, 2016 09:21 AM

    Tasos Laskos's Avatar

    Hello,

    If no checks have been enabled then the hook that this plugin depends on will not be called.
    Try enabling the trainer check.

    Cheers,
    Tasos L.

  2. 2 Posted by Vojta Polasek on 21 Jul, 2016 09:27 AM

    Vojta Polasek's Avatar

    Hi,
    unfortunately this didn't help. Another strange thing is, that even when I explicitly enabled only autothrottle and vector_collector, I can see results of the healthmap plugin. It is not specified in the configuration file.
    I am running nightly version.
    Vojta

  3. Support Staff 3 Posted by Tasos Laskos on 21 Jul, 2016 09:32 AM

    Tasos Laskos's Avatar

    Some plugins are on by default, like the healthmap.

    The vector_collector is working fine in my case though, where are you looking for the results?

  4. 4 Posted by Vojta Polasek on 21 Jul, 2016 09:36 AM

    Vojta Polasek's Avatar

    Hi,
    in the HTML report I look in 'Plugin results'. There is only healthmap mentioned. I will redownload the nightly version.
    Vojta

  5. Support Staff 5 Posted by Tasos Laskos on 21 Jul, 2016 09:38 AM

    Tasos Laskos's Avatar

    It's there in my case.

  6. 6 Posted by Vojta Polasek on 21 Jul, 2016 10:35 AM

    Vojta Polasek's Avatar

    Hi,
    well, it finally works, but not on wavsep. I tried to scan http://localhost:8080/wavsep/passive/info/index.jsp and it did not work.
    Vojta

  7. 7 Posted by Vojta Polasek on 21 Jul, 2016 11:13 AM

    Vojta Polasek's Avatar

    Now when it works, I looked at its output. Could you point me at classes which are used in the output? I mean linkclass, formclass etc. I would like to use Arachni to collect requests during its scan and use them later for Sqlmap. So I need to write some small sw which will extract information useful for Sqlmap from this vector_collector output.
    Thanks,
    Vojta

  8. Support Staff 8 Posted by Tasos Laskos on 22 Jul, 2016 02:05 PM

    Tasos Laskos's Avatar

    If you go by class, they are:

    • Arachni::Element::Link
    • Arachni::Element::Form
    • Arachni::Element::Cookie
    • Arachni::Element::Header

  9. Tasos Laskos closed this discussion on 02 Aug, 2016 03:53 PM.

Comments are currently closed for this discussion. You can start a new one.

  • New Issue

  • Conversation Started

  • The discussion is closed

    No more actions from Arachni or the discussion starter are required.

  • Re-open the discussion

Private Permissions

This discussion is private. Only you and Arachni support staff can see and reply to it.

Public Permissions

This discussion is public. Everyone can see and reply to it.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

19 Oct, 2023 06:03 PM Error - Not able Scan /ruby/lib/ruby/gems/2.7.0/gems/arachni-1.6.1.3/lib/arachni/rpc/server/framework.rb:156:in `block in run'
12 Aug, 2023 11:04 AM Error when launching arachni_web
08 May, 2023 05:30 PM Security Assessment
05 May, 2023 10:53 AM REST API - Not detecting Any Issues
16 Mar, 2023 02:43 AM BITCOIN LOTTERY - SOFTWARE FREE

Recent Articles

Optimizing for faster scans
Service scanning
Software as a Service (Saas)