Skip to content
This repository has been archived by the owner on Feb 20, 2025. It is now read-only.
/ immunity-python-agent Public archive

πŸŽ“ IAST agent for interactive analysis of web applications in Python (part of thesis).

16 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

light-hat/immunity-python-agent

BranchesTags

Repository files navigation

Python agent

IAST-Π°Π³Π΅Π½Ρ‚, встраиваСмый Π² сканируСмыС прилоТСния Π½Π° Python. Π˜Π½ΡΡ‚Ρ€ΡƒΠΌΠ΅Π½Ρ‚ΠΈΡ€ΠΎΠ²Π°Π½ΠΈΠ΅ рСализуСтся ΠΏΡƒΡ‚Ρ‘ΠΌ внСдрСния middleware для ΠΏΠ΅Ρ€Π΅Ρ…Π²Π°Ρ‚Π° ΠΎΠ±Ρ€Π°Π±ΠΎΡ‚ΠΊΠΈ запросов.

ΠŸΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΈΠ²Π°Π΅ΠΌΡ‹Π΅ Ρ„Ρ€Π΅ΠΉΠΌΠ²ΠΎΡ€ΠΊΠΈ:

  • Django
  • Flask

Установка

Π’Ρ‹ΠΏΠΎΠ»Π½ΠΈΡ‚Π΅ ΠΊΠΎΠΌΠ°Π½Π΄Ρƒ Π² Ρ‚Π΅Ρ€ΠΌΠΈΠ½Π°Π»Π΅:

pip install immunity-iast

ОбновлСниС

Π’Ρ‹ΠΏΠΎΠ»Π½ΠΈΡ‚Π΅ ΠΊΠΎΠΌΠ°Π½Π΄Ρƒ Π² Ρ‚Π΅Ρ€ΠΌΠΈΠ½Π°Π»Π΅:

pip install immunity-iast --upgrade

ΠšΠΎΠ½Ρ„ΠΈΠ³ΡƒΡ€ΠΈΡ€ΠΎΠ²Π°Π½ΠΈΠ΅

Π’Ρ‹ΠΏΠΎΠ»Π½ΠΈΡ‚Π΅ ΠΊΠΎΠΌΠ°Π½Π΄Ρƒ Π² Ρ‚Π΅Ρ€ΠΌΠΈΠ½Π°Π»Π΅:

python3 -m immunity_agent 127.0.0.1 80 test

Π’ качСствС Π°Ρ€Π³ΡƒΠΌΠ΅Π½Ρ‚ΠΎΠ² ΠΏΠ΅Ρ€Π΅Π΄Π°Ρ‘ΠΌ хост ΠΈ ΠΏΠΎΡ€Ρ‚ сСрвСрной части ΠΈ имя ΠΏΡ€ΠΎΠ΅ΠΊΡ‚Π°, Ρ€Π°Π½Π΅Π΅ созданного Π½Π° сСрвСрС.

Π˜Π½Ρ‚Π΅Π³Ρ€Π°Ρ†ΠΈΡ Π² Django

Π˜Π·ΠΌΠ΅Π½ΠΈΡ‚Π΅ settings.py:

INSTALLED_APPS = [
    # ...
    'immunity_agent'
]

MIDDLEWARE = [
    # ...
    'immunity_agent.middlewares.django_middleware.ImmunityDjangoMiddleware'
]

ПослС пСрСзапуска Π°Π³Π΅Π½Ρ‚ Π±ΡƒΠ΄Π΅Ρ‚ Π°ΠΊΡ‚ΠΈΠ²ΠΈΡ€ΠΎΠ²Π°Π½ автоматичСски.

Π˜Π½Ρ‚Π΅Π³Ρ€Π°Ρ†ΠΈΡ Π² Flask

Π£ΠΊΠ°ΠΆΠΈΡ‚Π΅ Π² app.py:

app = flask.Flask(__name__)
app.wsgi_app = ImmunityFlaskMiddleware(app.wsgi_app, app.root_path)

# ...

ПослС пСрСзапуска Π°Π³Π΅Π½Ρ‚ Π±ΡƒΠ΄Π΅Ρ‚ Π°ΠΊΡ‚ΠΈΠ²ΠΈΡ€ΠΎΠ²Π°Π½ автоматичСски.

About

πŸŽ“ IAST agent for interactive analysis of web applications in Python (part of thesis).

Resources

Readme
Activity

Stars

16 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

51 tags

Packages

No packages published

Languages