Skip to content
GitLab

Command line user interface · Changes

Page history
Updated Command-line-user-interface (markdown) authored by Tasos Laskos's avatar Tasos Laskos
Show whitespace changes
Inline Side-by-side
guides/user/Command-line-user-interface.md
View page @ 00ed7225
...@@ -327,124 +327,24 @@ Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 ...@@ -327,124 +327,24 @@ Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: ASP.NET_SessionId=e4h4wy45jmb5vkrg0wl1rj45;amSessionId=15420499882 Cookie: ASP.NET_SessionId=e4h4wy45jmb5vkrg0wl1rj45;amSessionId=15420499882
``` ```
<h3 id='debug'><a href='#debug'>Debug (--debug)</a></h3>
<h3 id='debug'><a href='#debug'>Debug mode (--debug)</a></h3> **Expects**: `integer`
**Expects**: `<n/a>` **Default**: `1`
**Default**: `disabled`
**Multiple invocations?**: `no` **Multiple invocations?**: `no`
When this flag is enabled the system will output a lot of messages detailing what's happening internally. When this flag is enabled the system will output a lot of messages detailing what's happening internally.
The level/detail of the messages can be specified in the form of an integer between `1` and `3`.
If you don't want to be flooded by annoying and obscure messages you can pipe debugging output to a separate file when running Arachni using: If you don't want to be flooded by annoying and obscure messages, you can pipe debugging output to a separate file when running Arachni using:
```
$ arachni -pv --mods=xss http://localhost/~zapotek/tests/forms/xss.php --debug 2> debug.log
```
The debug.log file will contain something like:
``` ```
$ cat debug.log arachni http://example.com --debug 2> debug.log
[!] XSS: Current audit ID: XSS:http://localhost/~zapotek/tests/forms/xss.php:form:["xss"]=<arachni_xss_5e2e830ed4f831cb30df6df05151022b94cd27991b459ae8c3b349e2bbd2dad1
[!] XSS: Current audit ID: XSS:http://localhost/~zapotek/tests/forms/xss.php:form:["xss"]=__original_values__
[!] XSS: Current audit ID: XSS:http://localhost/~zapotek/tests/forms/xss.php:form:["xss"]=__sample_values__
[!] XSS:
[!] XSS: Trainer set to: OFF
[!] XSS: ------------
[!] XSS: Injection string format combinations set to:
[!] XSS: |
[!] XSS: |----> Null character termination (Format::NULL [4]) and append to default value (Format::APPEND [2]). [Combo mask: 6]
[!] XSS:
[!] XSS: Prepared combinations:
[!] XSS: |
[!] XSS: |
[!] XSS: |--> Auditing: __original_values__
[!] XSS: |--> Combo:
[!] XSS: |------> ["xss", ""]
[!] XSS: |
[!] XSS: |--> Auditing: __sample_values__
[!] XSS: |--> Combo:
[!] XSS: |------> ["xss", "1"]
[!] XSS: |
[!] XSS: |--> Auditing: xss
[!] XSS: |--> Combo:
[!] XSS: |------> ["xss", "1<arachni_xss_5e2e830ed4f831cb30df6df05151022b94cd27991b459ae8c3b349e2bbd2dad1\x00"]
[!] XSS:
[!] XSS: ------------
[!] XSS:
[!] XSS: Current audit ID: XSS:http://localhost/~zapotek/tests/forms/xss.php:form:["xss"]=__original_values__
[!] XSS: Submitting form with original values; overriding trainer option.
[!] XSS: Trainer set to: ON
[!] ------------
[!] Queued request.
[!] ID#: 0
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>""}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: true
[!] ------------
[!] XSS: Current audit ID: XSS:http://localhost/~zapotek/tests/forms/xss.php:form:["xss"]=__sample_values__
[!] XSS: Submitting form with sample values; overriding trainer option.
[!] XSS: Trainer set to: ON
[!] ------------
[!] Queued request.
[!] ID#: 1
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>"1"}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: true
[!] ------------
[!] ------------
[!] Queued request.
[!] ID#: 2
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>"1<arachni_xss_5e2e830ed4f831cb30df6df05151022b94cd27991b459ae8c3b349e2bbd2dad1\x00"}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: false
[!] ------------
[!] ------------
[!] Got response.
[!] Request ID#: 2
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>"1<arachni_xss_5e2e830ed4f831cb30df6df05151022b94cd27991b459ae8c3b349e2bbd2dad1\x00"}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: false
[!] ------------
[!] XSS: Request ID: 2
[!] ------------
[!] Got response.
[!] Request ID#: 0
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>""}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: true
[!] ------------
[!] Trainer: Started for response with request ID: #0
[!] Trainer: Page hasn't changed, skipping...
[!] ------------
[!] Got response.
[!] Request ID#: 1
[!] URL: http://localhost/~zapotek/tests/forms/xss.php
[!] Method: post
[!] Params: {"xss"=>"1"}
[!] Headers: {"cookie"=>"", "From"=>"", "Accept"=>"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8", "User-Agent"=>"Arachni/0.2.1"}
[!] Train?: true
[!] ------------
[!] Trainer: Started for response with request ID: #1
[!] Trainer: Training complete.
``` ```
<h3 id='only-positives'><a href='#only-positives'>Only positives (--only-positives)</a></h3> <h3 id='only-positives'><a href='#only-positives'>Only positives (--only-positives)</a></h3>
**Expects**: `<n/a>` **Expects**: `<n/a>`
......