[Net:ReadTimeout] error when running .rb login script through browser with --http-proxy

Andrii's Avatar

Andrii

26 Apr, 2017 03:57 PM

Hello!

The problem occurs with a JSF web site which has a lot of resource files to be downloaded while loging in.

When I'm running arachni with .rb browser login script without --http-proxy - it works just fine, when I'm trying to do the same with BurpSuite proxy - ReadTimeout occurs. The script actually performs successful login, but an error occurs on the stage of downloading extra resources. How can I extend ReadTimeout or deal with that error?

Thank you,
Andrii.

  1. Support Staff 1 Posted by Tasos Laskos on 27 Apr, 2017 10:22 AM

    Tasos Laskos's Avatar

    Can you show me the entire error please?

  2. 2 Posted by Andrii on 27 Apr, 2017 12:11 PM

    Andrii's Avatar

    Thank you for the response. Full error message is attached.

  3. Support Staff 3 Posted by Tasos Laskos on 27 Apr, 2017 12:12 PM

    Tasos Laskos's Avatar

    Can you also show me the script please?

  4. 4 Posted by Andrii on 27 Apr, 2017 12:37 PM

    Andrii's Avatar

    Yes, sure:

    browser.goto 'https://site.com/login.xhtml'
    
    btn = browser.button( id: 'loginForm:submitForm' )
    lgn = browser.text_field( name: 'loginForm:j_username' ).set 'username'
    pass = browser.text_field( name: 'loginForm:j_password' ).set 'password'
    
    btn.click
    
    framework.options.session.check_pattern = /Welcome,/
    

    And it does log in, but crashes after, on the stage of downloading JSs and CSSs

  5. Support Staff 5 Posted by Tasos Laskos on 29 Apr, 2017 11:18 AM

    Tasos Laskos's Avatar

    Can you please try increasing the --browser-cluster-job-timeout setting? Set it to 50 (50 seconds) and see if that helps at all.

  6. Tasos Laskos closed this discussion on 11 Jun, 2017 10:37 AM.

Comments are currently closed for this discussion. You can start a new one.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac