Fix exploit token replacement when having multiple matches #167

vanjo9800 · 2021-10-03T17:44:48Z

While testing my changes on !162, I noticed that there was a problem in the Exploit reporting when there were multiple matches in the file:

➜  pyWhat git:(fix_here_replacement) pywhat fixtures/file | grep -A 2 -B 1 'Twilio Account SID'
Matched on: ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l:[AUTH_TOKEN]
--
--
Matched on: ACAWIQTrhbtfozp14V6UTmPyMVUMT0fjjg
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l:[AUTH_TOKEN]
--
--
Matched on: ACgkQ8jFVDE9H447pKwD6A5xwUqIDprBzr
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l:[AUTH_TOKEN]

Looking at the code, I found the issue was caused by https://github.com/bee-san/pyWhat/blob/main/pywhat/regex_identifier.py#L31 where a shallow copy was used and the regex match reference was directly manipulated due to the same name. I have change the copy to deep and rename the matched expression data.

After fixing the issue, each token is replaced correspondingly:

➜  pyWhat git:(fix_here_replacement) pywhat fixtures/file | grep -A 2 -B 1 'Twilio Account SID'
Matched on: ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACAQDrnjkGtf3iA46rtwsvRiscvMTCw30l:[AUTH_TOKEN]
--
--
Matched on: ACAWIQTrhbtfozp14V6UTmPyMVUMT0fjjg
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACAWIQTrhbtfozp14V6UTmPyMVUMT0fjjg:[AUTH_TOKEN]
--
--
Matched on: ACgkQ8jFVDE9H447pKwD6A5xwUqIDprBzr
Name: Twilio Account SID
Exploit: Use the command below to verify that the SID is valid:
  $ curl -X GET 'https://api.twilio.com/2010-04-01/Accounts.json' -u ACgkQ8jFVDE9H447pKwD6A5xwUqIDprBzr:[AUTH_TOKEN]

…ches

bee-san · 2021-10-03T18:59:19Z

This is actually a very cool bug, great description of it and a nice fix 👏🏻 Thank you so much! 👏🏻 👏🏻 👏🏻

vanjo9800 · 2021-10-03T19:02:42Z

I will fix the tests now.

It looks like bee-san#167 has introduced a performance regression by adding what seems to be an unnecessary deep copy. A shallow dictionary copy seems to work just fine.

vanjo9800 marked this pull request as draft October 3, 2021 17:45

Fix a bug with an overwritten global match when handling multiple mat…

afcb78e

…ches

vanjo9800 force-pushed the fix_here_replacement branch from 4d6c41c to afcb78e Compare October 3, 2021 17:50

vanjo9800 marked this pull request as ready for review October 3, 2021 17:51

bee-san self-requested a review October 3, 2021 18:57

bee-san approved these changes Oct 3, 2021

View reviewed changes

Merge branch 'main' into fix_here_replacement

fec71ed

Fix formatting as suggested per pytest-black

ef139ec

bee-san merged commit fd14e75 into bee-san:main Oct 3, 2021

P403n1x87 mentioned this pull request Oct 20, 2021

perf: fix RegexIdentifier.check regression #218

Merged

1 task

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix exploit token replacement when having multiple matches #167

Fix exploit token replacement when having multiple matches #167

vanjo9800 commented Oct 3, 2021

bee-san commented Oct 3, 2021

vanjo9800 commented Oct 3, 2021

Fix exploit token replacement when having multiple matches #167

Fix exploit token replacement when having multiple matches #167

Conversation

vanjo9800 commented Oct 3, 2021

bee-san commented Oct 3, 2021

vanjo9800 commented Oct 3, 2021