Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable these tests @ CircleCI #1368

Closed
andresriancho opened this issue Mar 7, 2014 · 7 comments
Closed

Enable these tests @ CircleCI #1368

andresriancho opened this issue Mar 7, 2014 · 7 comments
Labels
core improvement unittest
Milestone
1.6 - Consumer/pr...

Comments

@andresriancho
Copy link
Owner

The following unittests are considered important and need to be enabled and run in our CircleCI builds:

w3af.plugins.tests.auth.test_generic.TestGeneric.test_post_auth_xss

Right now they are not run and we should enable them one by one until the list is all implemented. This process will take time, but it is the only way to increase the quality of our project.

It is important to notice that this will also require work on https://github.com/andresriancho/django-moth

The list of unittests which aren't run can be found at the bottom of the nosetests.log (circleci build artifacts)
@andresriancho andresriancho added this to the Configure CircleCI milestone Mar 7, 2014
andresriancho added a commit that referenced this issue Mar 21, 2014
@andresriancho
Test for test_found_unssl PASS
e11fd75 
Enable these tests @ CircleCI #1368
andresriancho added a commit that referenced this issue Mar 21, 2014
@andresriancho
Added negative test for un_ssl
49dc5d8 
Enable these tests @ CircleCI #1368
@andresriancho
Copy link
Owner Author

This comment holds the tests which were in the initial issue description and were already added (and removed from the list). It will get edited until we complete the task.

w3af.plugins.tests.crawl.test_dir_file_bruter.TestDirFileBruter.test_directories
w3af.plugins.tests.crawl.test_dir_file_bruter.TestDirFileBruter.test_files
w3af.plugins.tests.crawl.test_dir_file_bruter.TestDirFileBruter.test_directories_files
w3af.plugins.tests.crawl.test_dir_file_bruter.TestDirFileBruter.test_no_index
w3af.plugins.tests.crawl.test_dir_file_bruter.TestDirFileBruter.test_recursive

w3af.plugins.tests.infrastructure.test_afd.TestAFD.test_afd_found_http
w3af.plugins.tests.infrastructure.test_afd.TestAFD.test_afd_found_https
w3af.plugins.tests.infrastructure.test_afd.TestAFD.test_afd_not_found

w3af.plugins.tests.audit.test_blind_sqli.TestBlindSQLI.test_integer
w3af.plugins.tests.audit.test_blind_sqli.TestBlindSQLI.test_single_quote

w3af.core.controllers.sca.tests.test_sca.TestPHPSCA.test_vuln_functions_2

w3af.core.data.url.tests.test_xurllib_proxy.TestExtendedUrllibProxy.test_https_via_proxy

w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_wivet
w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_spider_found_urls
w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_spider_found_urls_with_port
w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_spider_relative_urls_found_with_regex
w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_spider_traverse_directories
w3af.plugins.tests.crawl.test_web_spider.TestWebSpider.test_spider_urls_with_strange_charsets

test_sqlmap_wrapper.TestSQLMapWrapper.test_verify_vulnerability_ssl
test_sqlmap_wrapper.TestSQLMapWrapper.test_users

w3af.plugins.tests.crawl.test_digit_sum.TestDigitSum.test_found_fname
w3af.plugins.tests.crawl.test_digit_sum.TestDigitSum.test_found_qs

w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_found_exploit_sqlmap_blind_sqli
w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_found_exploit_sqlmap_sqli
w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_from_template

w3af.plugins.tests.audit.test_eval.TestEval.test_found_eval_delay
w3af.plugins.tests.audit.test_eval.TestEval.test_found_eval_echo
w3af.plugins.tests.attack.test_eval.TestEvalShell.test_found_exploit_eval
w3af.plugins.tests.attack.test_eval.TestEvalShell.test_from_template

andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Enable these tests @ CircleCI #1368
f25b9a7
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Enable these tests @ CircleCI #1368
0b10755 
Test commit to make sure the new djmoth stuff works
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Enable these tests @ CircleCI #1368
9efa023
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Enable these tests @ CircleCI #1368
500d6e1
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Enable these tests @ CircleCI #1368
7e73047
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Should be fine in CI
4a487e9 
Enable these tests @ CircleCI #1368
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Should be fine in CI
e0f821b 
Enable these tests @ CircleCI #1368
andresriancho added a commit that referenced this issue Mar 25, 2014
@andresriancho
Should be fine in CI
7b4ede1 
Enable these tests @ CircleCI #1368
@andresriancho
Copy link
Owner Author

The problem with the sqlmap exploit tests:

w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_found_exploit_sqlmap_blind_sqli
w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_found_exploit_sqlmap_sqli
w3af.plugins.tests.attack.test_sqlmap.TestSQLMapShell.test_from_template

Is that they were written to be run with mysql, and now moth runs with sqlite. Need to think a little bit about this test, and maybe run it against sqlmap testenv #1694

@andresriancho
Copy link
Owner Author

re: sqlmap, I believe the best thing is to have two different tests, one for sqlite and one for mysql. I should have the ones for sqlite PASSing today, and create a task for the mysql ones (which can run against testenv).

andresriancho added a commit that referenced this issue Mar 26, 2014
@andresriancho
Enable these tests @ CircleCI #1368
3c53643 
test_spider_found_urls
@andresriancho
Copy link
Owner Author

Encoding test cases for web_spider blocked for now because of pytries/datrie#20

andresriancho added a commit that referenced this issue Mar 27, 2014
@andresriancho
* Refactoring of encoding unittests
9fe95f5 
* Failed to complete encoding tests due to pytries/datrie#20
* Enable these tests @ CircleCI #1368
@andresriancho
Copy link
Owner Author

Unblocked! andresriancho/django-moth@038419d

andresriancho added a commit that referenced this issue Mar 27, 2014
@andresriancho
Added tests for UTF8
6da229a 
Enable these tests @ CircleCI #1368
@andresriancho
Copy link
Owner Author

Ahhh, the joy of UnicodeDecode errors:

@andresriancho
Copy link
Owner Author

Fixed django-moth! https://circleci.com/gh/andresriancho/django-moth/tree/master

andresriancho added a commit that referenced this issue Mar 27, 2014
@andresriancho
Enable these tests @ CircleCI #1368
c0f2661 
test_sqlmap_wrapper.TestSQLMapWrapper.test_verify_vulnerability_ssl
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
* Setting debug to True for running unittests
fa5a797 
* Re-enabling test for CI, since it works on my workstation
re: Enable these tests @ CircleCI #1368
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
Migrating tests to django-moth
8f7778d 
Enable these tests @ CircleCI #1368
@andresriancho andresriancho mentioned this issue Mar 28, 2014
Closed
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
* Initial progress for "Measure w3af against sqlmap testenv #1694": I…
ecd4fe7 
…nstalled testenv in CircleCI

* "Enable these tests @ CircleCI #1368": Running test_found_exploit_sqlmap_sqli
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
Enable these tests @ CircleCI #1368
5bf572c
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
Enable these tests @ CircleCI #1368
c6d63c5 
audit.eval
andresriancho added a commit that referenced this issue Mar 28, 2014
@andresriancho
* Enable these tests @ CircleCI #1368
9f1e4db 
* w3af.plugins.tests.attack.test_eval.TestEvalShell.test_found_exploit_eval
* w3af.plugins.tests.attack.test_eval.TestEvalShell.test_from_template
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
core improvement unittest
Projects
None yet
Milestone
1.6 - Consumer/producer release
Development

No branches or pull requests
1 participant
@andresriancho