org.owasp.jbrofuzz.util.TextHighlighter Maven / Gradle / Ivy

Go to download
Show more of this group Show more artifacts with this name
Show all versions of jbrofuzz-encoder Show documentation
JBroFuzz is a stateless web application fuzzer for requests being made over HTTP and/or HTTPS. Its purpose is to provide a single, portable application that offers stable web protocol fuzzing capabilities. As a tool, it emerged from the needs of penetration testing.
There is a newer version: 2.5.1
Show newest version
/**
 * JbroFuzz 2.5
 *
 * JBroFuzz - A stateless network protocol fuzzer for web applications.
 * 
 * Copyright (C) 2007 - 2010 [email protected]
 *
 * This file is part of JBroFuzz.
 * 
 * JBroFuzz is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 * 
 * JBroFuzz is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License
 * along with JBroFuzz.  If not, see .
 * Alternatively, write to the Free Software Foundation, Inc., 51 
 * Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 * 
 * Verbatim copying and distribution of this entire program file is 
 * permitted in any medium without royalty provided this notice 
 * is preserved. 
 * 
 */
package org.owasp.jbrofuzz.util;

import java.awt.Color;
import java.util.HashMap;
import java.util.Set;
import java.util.regex.Matcher;
import java.util.regex.Pattern;

import javax.swing.text.AttributeSet;
import javax.swing.text.BadLocationException;
import javax.swing.text.DefaultStyledDocument;
import javax.swing.text.MutableAttributeSet;
import javax.swing.text.SimpleAttributeSet;
import javax.swing.text.StyleConstants;

/**
 * Syntax Highlighting Test using a JTextPane
 * 
 * By: Frank Hale  Date: 12 November 2006
 * 
 * This program is free software; you can redistribute it and/or modify it under
 * the terms of the GNU General Public License as published by the Free Software
 * Foundation; either version 2 of the License, or (at your option) any later
 * version.
 * 
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
 * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
 * details.
 * 
 * You should have received a copy of the GNU General Public License along with
 * this program; if not, write to the Free Software Foundation, Inc., 51
 * Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
 * 
 * A full copy of this license is at: http://www.gnu.org/licenses/gpl.txt
 * 
 */
public class TextHighlighter extends DefaultStyledDocument {

	/**
	 * 
	 */
	private static final long serialVersionUID = 3812224127502539817L;

	private final HashMap keywords;
	private final MutableAttributeSet style;

	/**
	 * Default Constructor for the TextHighlighter, extending the DefaultStyled
	 * Document.
	 */
	public TextHighlighter() {
		super();
		
		keywords = new HashMap();
		keywords.put("GET", Color.black);
		keywords.put("PUT", Color.black);
		keywords.put("POST", Color.black);
		keywords.put("HEAD", Color.black);
		keywords.put("TRACE", Color.black);
		keywords.put("PROPFIND", Color.black);
		keywords.put("HTTP/\\d.\\d", Color.black);

		final Color lightBlue = new Color(51, 102, 102);

		keywords.put("Apache", lightBlue);
		keywords.put("Windows", lightBlue);
		keywords.put("Windows NT \\d.\\d", lightBlue);
		keywords.put("Mozilla/\\d.\\d", lightBlue);
		keywords.put("Firefox", lightBlue);
		keywords.put("Internet", lightBlue);
		keywords.put("Gecko", lightBlue);
		keywords.put("Keep-Alive", lightBlue);
		keywords.put("keep-alive", lightBlue);
		keywords.put("Mozilla", lightBlue);
		keywords.put("MSIE", lightBlue);
		keywords.put("SymbianOS", lightBlue);
		keywords.put("Chrome", lightBlue);
		keywords.put("Safari", lightBlue);
		keywords.put("Linux", lightBlue);
		keywords.put("Android", lightBlue);

		final Color darkGreen = new Color(0, 128, 0);

		keywords.put("ISO-[0-9]{4}-[0-9]", darkGreen);
		keywords.put("iso-[0-9]{4}-[0-9]", darkGreen);
		keywords.put("utf-[0-9]{2}", darkGreen);
		keywords.put("UTF-[0-9]{2}", darkGreen);
		keywords.put("GMT", darkGreen);
		keywords.put("utf-8", darkGreen);
		keywords.put("private", darkGreen);
		keywords.put("public", darkGreen);
		keywords.put("text", darkGreen);
		keywords.put("xml", darkGreen);
		keywords.put("png", darkGreen);
		keywords.put("image", darkGreen);
		keywords.put("application", darkGreen);
		keywords.put("HttpOnly", darkGreen);
		keywords.put("CLR", darkGreen);

		keywords.put("html", Color.green);
		keywords.put("gif", Color.green);
		keywords.put("pjpeg", Color.green);
		keywords.put("jpeg", Color.green);
		keywords.put("xhtml", Color.green);
		keywords.put("x-xbitmap", Color.green);
		keywords.put("plain", Color.green);
		keywords.put("iPhone", Color.green);

		final Color dateColor = new Color(153, 0, 153);

		keywords.put("Mon", dateColor);
		keywords.put("Tue", dateColor);
		keywords.put("Wed", dateColor);
		keywords.put("Thu", dateColor);
		keywords.put("Fri", dateColor);
		keywords.put("Sat", dateColor);
		keywords.put("Sun", dateColor);

		keywords.put("Jan", dateColor);
		keywords.put("Feb", dateColor);
		keywords.put("Mar", dateColor);
		keywords.put("Apr", dateColor);
		keywords.put("May", dateColor);
		keywords.put("Jun", dateColor);
		keywords.put("Jul", dateColor);
		keywords.put("Aug", dateColor);
		keywords.put("Sep", dateColor);
		keywords.put("Oct", dateColor);
		keywords.put("Nov", dateColor);
		keywords.put("Dec", dateColor);

		final Color keramidi = new Color(204, 51, 0);

		keywords.put("en", keramidi);
		keywords.put("en-us", keramidi);
		keywords.put("en-gb", keramidi);
		keywords.put("en-GB", keramidi);
		keywords.put("en-US", keramidi);
		keywords.put("XMLHttpRequest", keramidi);

		keywords.put("gzip", keramidi);
		keywords.put("x-gzip", keramidi);
		keywords.put("x86", keramidi);
		keywords.put("localhost", keramidi);
		keywords.put("identity", keramidi);
		keywords.put("compatible", keramidi);

		keywords.put("deflate", Color.orange);
		keywords.put("sdch", Color.orange);
		keywords.put("bzip2", Color.orange);

		// keywords.put("[-\\w]+/[\\w\\.\\+]+", lightBlue);
		// keywords.put("utf-8", lightBlue);

		keywords.put("[\\d\\.]+", Color.orange);
		keywords.put("[\\w]+=", Color.magenta);

		// RFC 2396 reserved characters
		// ; / ? : @ & = + $
		keywords.put(";", Color.red);
		keywords.put("/", Color.red);
		keywords.put("?", Color.red);
		keywords.put(":", Color.red);
		keywords.put("@", Color.red);
		// keywords.put("=", Color.red);
		// keywords.put("+", Color.red);
		keywords.put("$", Color.red);

		keywords.put("Accept", Color.blue);
		keywords.put("Accept-Charset", Color.blue);
		keywords.put("Accept-charset", Color.blue);
		keywords.put("Accept-Encoding", Color.blue);
		keywords.put("Accept-encoding", Color.blue);
		keywords.put("Accept-Language", Color.blue);
		keywords.put("Age", Color.blue);
		keywords.put("Cache-Control", Color.blue);
		keywords.put("Cache-control", Color.blue);
		keywords.put("Connection", Color.blue);
		keywords.put("Content-Encoding", Color.blue);
		keywords.put("Content-encoding", Color.blue);
		keywords.put("Content-language", Color.blue);
		keywords.put("content-length", Color.blue);
		keywords.put("Content-length", Color.blue);
		keywords.put("Content-Length", Color.blue);
		keywords.put("Accept-Ranges", Color.blue);
		keywords.put("Content-type", Color.blue);
		keywords.put("Content-Type", Color.blue);
		keywords.put("Cookie", Color.blue);
		keywords.put("Date", Color.blue);
		keywords.put("ETag", Color.blue);
		keywords.put("Expect", Color.blue);
		keywords.put("expect", Color.blue);
		keywords.put("Expires", Color.blue);
		keywords.put("expires", Color.blue);
		keywords.put("Host", Color.blue);
		keywords.put("^Keep-Alive", Color.blue);
		keywords.put("Last-Modified", Color.blue);
		keywords.put("Last-modified", Color.blue);
		keywords.put("Location", Color.blue);
		keywords.put("Mime-Version", Color.blue);
		keywords.put("P3P", Color.blue);
		keywords.put("P3p", Color.blue);
		keywords.put("Pragma", Color.blue);
		keywords.put("Proxy-Agent", Color.blue);
		keywords.put("Proxy-agent", Color.blue);
		keywords.put("Proxy-Authorization", Color.blue);
		keywords.put("Proxy-authorization", Color.blue);
		keywords.put("Proxy-Connection", Color.blue);
		keywords.put("Referer", Color.blue);
		keywords.put("Server", Color.blue);
		keywords.put("Set-Cookie", Color.blue);
		keywords.put("Set-cookie", Color.blue);
		keywords.put("Transfer-Encoding", Color.blue);
		keywords.put("UA-CPU", Color.blue);
		keywords.put("UA-color", Color.blue);
		keywords.put("UA-pixels", Color.blue);
		keywords.put("UA-OS", Color.blue);
		keywords.put("User-Agent", Color.blue);
		keywords.put("User-agent", Color.blue);
		keywords.put("Vary", Color.blue);
		keywords.put("Via", Color.blue);
		keywords.put("X-AspNet-Version", Color.blue);
		keywords.put("x-aspnet-version", Color.blue);
		keywords.put("x-aspnetmvc-version", Color.blue);
		keywords.put("X-Cache-TTL", Color.blue);
		keywords.put("X-Cached-Time", Color.blue);
		keywords.put("X-Content-Type-Options", Color.blue);
		keywords.put("X-PHP-Load", Color.blue);
		keywords.put("X-Powered-By", Color.blue);
		keywords.put("X-Powered-by", Color.blue);
		keywords.put("X-powered-by", Color.blue);
		keywords.put("X-Requested-With", Color.blue);
		keywords.put("X-SDCH", Color.blue);
		keywords.put("x-ps3-browser", Color.blue);
		keywords.put("x-wap-profile", Color.blue);
		keywords.put("x-prototype-version", Color.blue);
		keywords.put("x-requested-with", Color.blue);
		
		// "|\\B+\\<.?html\\>+\\B|"
		final String prefixHTML = "|\\B+\\<.?";
		final String suffixHTML = "+\\>\\B|";
		keywords.put(prefixHTML + " " + suffixHTML, Color.blue);
		keywords.put(prefixHTML + "html" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "hr" + suffixHTML, Color.pink);
		keywords.put(prefixHTML + "header.*" + suffixHTML, Color.cyan);
		keywords.put(prefixHTML + "body" + suffixHTML, Color.red);
		keywords.put(prefixHTML + "title" + suffixHTML, Color.yellow);
		keywords.put(prefixHTML + "b" + suffixHTML, Color.blue);
		keywords.put(prefixHTML + "i" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "u" + suffixHTML, Color.pink);
		keywords.put(prefixHTML + "sup" + suffixHTML, Color.cyan);
		keywords.put(prefixHTML + "sub" + suffixHTML, Color.yellow);
		keywords.put(prefixHTML + "tt" + suffixHTML, Color.magenta);
		keywords.put(prefixHTML + "h+\\d" + suffixHTML, Color.pink);
		keywords.put(prefixHTML + "small" + suffixHTML, Color.darkGray);
		keywords.put(prefixHTML + "big" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "font" + suffixHTML, Color.pink);
		keywords.put(prefixHTML + "p" + suffixHTML, Color.darkGray);
		keywords.put(prefixHTML + "center" + suffixHTML, Color.blue);
		keywords.put(prefixHTML + "br" + suffixHTML, Color.gray);
		keywords.put(prefixHTML + "nobr " + suffixHTML, Color.red);
		keywords.put(prefixHTML + "blockquote" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "li" + suffixHTML, Color.blue);
		keywords.put(prefixHTML + "ul" + suffixHTML, Color.gray);
		keywords.put(prefixHTML + "ol" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "a" + suffixHTML, Color.blue);
		keywords.put(prefixHTML + "table" + suffixHTML, Color.yellow);
		keywords.put(prefixHTML + "td" + suffixHTML, Color.magenta);
		keywords.put(prefixHTML + "tr" + suffixHTML, Color.pink);
		keywords.put(prefixHTML + "div" + suffixHTML, Color.green);
		keywords.put(prefixHTML + "footer" + suffixHTML , Color.green);
		keywords.put(prefixHTML + "iframe" + suffixHTML, Color.lightGray);
		keywords.put(prefixHTML + "span" + suffixHTML, Color.magenta);
		keywords.put(prefixHTML + "!--+\\B|", Color.orange);
		keywords.put("|\\B+.?" + "--" + suffixHTML, Color.orange);
		style = new SimpleAttributeSet();
	}
	
	private void highlightString(final Color col, final int begin,
			final int length, final boolean flag, final boolean bold) {

		StyleConstants.setForeground(style, col);
		StyleConstants.setBold(style, bold);
		setCharacterAttributes(begin, length, style, flag);

	}

	@Override
	public void insertString(final int offset, final String str,
			final AttributeSet attr) throws BadLocationException {
		super.insertString(offset, str, attr);
		processChangedLines(offset, str.length());
	}

	private void processChangedLines(final int offset, final int length)
	throws BadLocationException {
		final String text = this.getText(0, getLength());
		highlightString(Color.black, 0, getLength(), true, false);

		final Set keyw = keywords.keySet();
		for (final String keyword : keyw) {
			final Color col = keywords.get(keyword);

			final Pattern p = Pattern.compile("\\b" + keyword + "\\b");
			final Matcher m = p.matcher(text);

			while (m.find()) {
				highlightString(col, m.start(), m.group().length(), true, true);
			}
		}

	}

	@Override
	public void remove(final int offset, final int length)
	throws BadLocationException {
		super.remove(offset, length);
		processChangedLines(offset, length);
	}
}