org.owasp.jbrofuzz.payloads.OpenLocationDialog Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of jbrofuzz-encoder Show documentation
Show all versions of jbrofuzz-encoder Show documentation
JBroFuzz is a stateless web application fuzzer for requests
being made over HTTP and/or HTTPS. Its purpose is to provide a single,
portable application that offers stable web protocol fuzzing capabilities.
As a tool, it emerged from the needs of penetration testing.
/**
* JbroFuzz 2.5
*
* JBroFuzz - A stateless network protocol fuzzer for web applications.
*
* Copyright (C) 2007 - 2010 [email protected]
*
* This file is part of JBroFuzz.
*
* JBroFuzz is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* JBroFuzz is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with JBroFuzz. If not, see
* The open location dialog.
*
*
* @author [email protected]
* @version 1.3
*/
public class OpenLocationDialog extends JDialog implements MouseListener,
KeyListener {
/**
*
*/
private static final long serialVersionUID = -5815321460026044259L;
// Dimensions of the generator dialog box
private static final int SIZE_X = 340;
private static final int SIZE_Y = 180;
// The buttons
private final JButton ok, cancel;
// The frame that the sniffing panel is attached
private final JBroFuzzWindow m;
private final JPopupMenu popmenu;
private final JComboBox urlBox, methodBox, charsetBox, versionBox;
/**
*
* Constructs a dialog box for (Ctrl+L) input of URL fields.
*
*
* @param parent
* JBroFuzzWindow The main window
*
* @author [email protected]
* @version 1.4
* @since 1.2
*/
public OpenLocationDialog(final JBroFuzzWindow parent) {
super(parent, " Open URL Location ", true);
// setFont(new Font("SansSerif", Font.BOLD, 10));
setFont(new Font("Verdana", Font.BOLD, 12));
setIconImage(ImageCreator.IMG_FRAME.getImage());
setLayout(new BorderLayout());
m = parent;
// Components
urlBox = new JComboBox();
urlBox.setPreferredSize(new Dimension(250, 20));
urlBox.setEditable(true);
urlBox.getEditor().getEditorComponent().addMouseListener(this);
urlBox.setToolTipText("Copy/Paste a URL from your browser");
urlBox.setFont(new Font("Verdana", Font.BOLD, 12));
urlBox.getEditor().getEditorComponent().addKeyListener(this);
final String methods[] = { "GET", "POST", "HEAD", "PUT", "DELETE",
"TRACE", "PROPFIND", "OPTIONS" };
final String versions[] = { "0.9", "1.0", "1.1", "1.2" };
final String charsets[] = { "ISO-8859-1" };
methodBox = new JComboBox(methods);
charsetBox = new JComboBox(charsets);
versionBox = new JComboBox(versions);
methodBox.setFont(new Font("Verdana", Font.BOLD, 10));
charsetBox.setFont(new Font("Verdana", Font.BOLD, 10));
versionBox.setFont(new Font("Verdana", Font.BOLD, 10));
methodBox.addKeyListener(this);
charsetBox.addKeyListener(this);
versionBox.addKeyListener(this);
methodBox.setMaximumRowCount(3);
charsetBox.setMaximumRowCount(3);
versionBox.setMaximumRowCount(3);
methodBox.setBackground(Color.BLACK);
charsetBox.setBackground(Color.BLACK);
versionBox.setBackground(Color.BLACK);
methodBox.setForeground(Color.WHITE);
charsetBox.setForeground(Color.WHITE);
versionBox.setForeground(Color.WHITE);
versionBox.setSelectedIndex(1);
// Buttons
ok = new JButton(" OK ");
ok.setBounds(515, 305, 140, 40);
ok.setToolTipText("Open the URL location in JBroFuzz");
cancel = new JButton("Cancel");
cancel.setBounds(515, 305, 140, 40);
cancel.setToolTipText("Cancel opening a URL location");
ok.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
SwingUtilities.invokeLater(new Runnable() {
public void run() {
clickOK();
OpenLocationDialog.this.dispose();
}
});
}
});
cancel.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
SwingUtilities.invokeLater(new Runnable() {
public void run() {
OpenLocationDialog.this.dispose();
}
});
}
});
// Pop-up menu
popmenu = new JPopupMenu();
final JMenuItem i1 = new JMenuItem("Cut");
final JMenuItem i2 = new JMenuItem("Copy");
final JMenuItem i3 = new JMenuItem("Paste");
final JMenuItem i4 = new JMenuItem("Select All");
popmenu.add(i1);
popmenu.add(i2);
popmenu.add(i3);
popmenu.addSeparator();
popmenu.add(i4);
// Cut
i1.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
final Clipboard clipboard = Toolkit.getDefaultToolkit()
.getSystemClipboard();
final Transferable clipData = clipboard.getContents(clipboard);
if (clipData != null) {
try {
if (clipData
.isDataFlavorSupported(DataFlavor.stringFlavor)) {
((JTextComponent) urlBox.getEditor()
.getEditorComponent()).cut();
}
} catch (final Exception e1) {
Logger
.log(
"Open Location: An error occured while cutting",
2);
}
}
}
});
// Copy
i2.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
final Clipboard clipboard = Toolkit.getDefaultToolkit()
.getSystemClipboard();
final Transferable clipData = clipboard.getContents(clipboard);
if (clipData != null) {
try {
if (clipData
.isDataFlavorSupported(DataFlavor.stringFlavor)) {
((JTextComponent) urlBox.getEditor()
.getEditorComponent()).copy();
}
} catch (final Exception e1) {
Logger
.log(
"Open Location: An error occured while copying",
2);
}
}
}
});
// Paste
i3.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
final Clipboard clipboard = Toolkit.getDefaultToolkit()
.getSystemClipboard();
final Transferable clipData = clipboard.getContents(clipboard);
if (clipData != null) {
try {
if (clipData
.isDataFlavorSupported(DataFlavor.stringFlavor)) {
((JTextComponent) urlBox.getEditor()
.getEditorComponent())
.replaceSelection((String) (clipData
.getTransferData(DataFlavor.stringFlavor)));
}
} catch (final Exception e1) {
Logger
.log(
"Open Location: An error occured while pasting",
2);
}
}
}
});
// Select All
i4.addActionListener(new ActionListener() {
public void actionPerformed(final ActionEvent e) {
urlBox.getEditor().selectAll();
}
});
// Final panels
final JPanel targetPanel = new JPanel(new FlowLayout(FlowLayout.RIGHT,
15, 15));
targetPanel.add(new JLabel("URL:"));
targetPanel.add(urlBox);
final JPanel propertiesPanel = new JPanel(new FlowLayout(
FlowLayout.RIGHT, 15, 15));
propertiesPanel.add(methodBox);
propertiesPanel.add(charsetBox);
propertiesPanel.add(versionBox);
final JPanel buttonPanel = new JPanel(new FlowLayout(FlowLayout.RIGHT,
15, 15));
buttonPanel.add(ok);
buttonPanel.add(cancel);
add(targetPanel, BorderLayout.NORTH);
add(propertiesPanel, BorderLayout.CENTER);
add(buttonPanel, BorderLayout.SOUTH);
// Set the URL text
final String url_displaying = parent.getPanelFuzzing().getTextURL();
((JTextComponent) urlBox.getEditor().getEditorComponent())
.setText(url_displaying);
((JTextComponent) urlBox.getEditor().getEditorComponent()).selectAll();
// Global frame issues
setLocation(parent.getLocation().x + 20, parent.getLocation().y + 40);
setSize(OpenLocationDialog.SIZE_X, OpenLocationDialog.SIZE_Y);
setResizable(true);
setVisible(true);
}
private void checkForTriggerEvent(final MouseEvent e) {
if (e.isPopupTrigger()) {
popmenu.show(e.getComponent(), e.getX(), e.getY());
}
}
private void clickOK() {
String in_url_s = ((JTextComponent) urlBox.getEditor()
.getEditorComponent()).getText();
if ((!in_url_s.startsWith("http://"))
&& (!in_url_s.startsWith("https://"))) {
in_url_s = "http://" + in_url_s;
}
try {
final URL inputURL = new URL(in_url_s);
final StringBuffer out_url = new StringBuffer();
out_url.append(inputURL.getProtocol());
out_url.append("://");
out_url.append(inputURL.getHost());
if (inputURL.getPort() > 0) {
out_url.append(":");
out_url.append(inputURL.getPort());
}
final StringBuffer req_url = new StringBuffer();
req_url.append(methodBox.getModel().getElementAt(
methodBox.getSelectedIndex()));
req_url.append(' ');
try {
// If no file is specified, add a /
if (inputURL.getFile().isEmpty()) {
req_url.append('/');
} else {
req_url.append(URLDecoder.decode(inputURL.getFile(),
"UTF-8"));
}
} catch (final UnsupportedEncodingException e) {
Logger.log("Open Location: Unsupported URL Encoding Exception", 3);
// If no file is specified, add a /
if (inputURL.getFile().isEmpty()) {
req_url.append('/');
} else {
req_url.append(inputURL.getFile());
}
}
req_url.append(' ');
req_url.append("HTTP/");
req_url.append(versionBox.getModel().getElementAt(
versionBox.getSelectedIndex()));
// Host: localhost
req_url.append('\n');
req_url.append("Host: ");
req_url.append(inputURL.getHost());
req_url.append('\n');
// User-Agent:
req_url
.append("User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9.0.10) Gecko/2009042316 Firefox/3.0.10 (.NET CLR 3.5.30729) JBroFuzz/");
req_url.append(JBroFuzzFormat.VERSION);
req_url.append('\n');
// Accept:
req_url
.append("Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8");
req_url.append('\n');
// Accept-Language:
req_url.append("Accept-Language: en-gb,en;q=0.5");
req_url.append('\n');
// Accept-Charset:
req_url.append("Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7");
req_url.append('\n');
// Keep-Alive:
// req_url.append("Keep-Alive: 300");
// req_url.append('\n');
// Proxy-Connection:
// req_url.append("Proxy-Connection: keep-alive");
// req_url.append('\n');
// req_url.append('\n');
m.getPanelFuzzing().setTextURL(out_url.toString());
m.getPanelFuzzing().setTextRequest(req_url.toString());
} catch (final MalformedURLException e) {
Logger.log("Open Location: Could not interpret the URL provided", 3);
}
}
@Override
public void keyPressed(KeyEvent ke) {
if (ke.getKeyCode() == 27) {
OpenLocationDialog.this.dispose();
}
if (ke.getKeyCode() == 10) {
clickOK();
OpenLocationDialog.this.dispose();
}
}
@Override
public void keyReleased(KeyEvent e) {
}
@Override
public void keyTyped(KeyEvent e) {
}
@Override
public void mouseClicked(MouseEvent e) {
checkForTriggerEvent(e);
}
@Override
public void mouseEntered(MouseEvent e) {
checkForTriggerEvent(e);
}
@Override
public void mouseExited(MouseEvent e) {
checkForTriggerEvent(e);
}
@Override
public void mousePressed(MouseEvent e) {
checkForTriggerEvent(e);
}
@Override
public void mouseReleased(MouseEvent e) {
checkForTriggerEvent(e);
}
}