diff --git a/src/core/injections/controller/checks.py b/src/core/injections/controller/checks.py index c28f089abb..59cf81bfde 100755 --- a/src/core/injections/controller/checks.py +++ b/src/core/injections/controller/checks.py @@ -903,7 +903,7 @@ def continue_tests(err): # Ignoring (problematic) HTTP error codes. if len(settings.IGNORE_CODE) != 0 and any(str(x) in str(err).lower() for x in settings.IGNORE_CODE): return True - + # Possible WAF/IPS try: if (str(err.code) == settings.FORBIDDEN_ERROR or \ @@ -914,8 +914,12 @@ def continue_tests(err): settings.print_data_to_stdout(settings.print_warning_msg(warn_msg)) settings.WAF_ENABLED = True + message = "" + if str(err.code) == settings.NOT_FOUND_ERROR: + message = "It is not recommended to continue in this kind of cases. " + while True: - message = "Do you want to ignore the response HTTP error code '" + str(err.code) + message += "Do you want to ignore the response HTTP error code '" + str(err.code) message += "' and continue the tests? [Y/n] > " continue_tests = common.read_input(message, default="Y", check_batch=True) if continue_tests in settings.CHOICE_YES: diff --git a/src/core/main.py b/src/core/main.py index b6039f29e9..2529345212 100644 --- a/src/core/main.py +++ b/src/core/main.py @@ -998,6 +998,8 @@ def main(filename, url, http_request_method): message = "Do you want to use URL #" + str(url_num) + " to perform tests? [Y/n] > " next_url = common.read_input(message, default="Y", check_batch=True) if next_url in settings.CHOICE_YES: + info_msg = "Testing URL '" + url + "'." + settings.print_data_to_stdout(settings.print_info_msg(info_msg)) break elif next_url in settings.CHOICE_NO: perform_check = False diff --git a/src/utils/settings.py b/src/utils/settings.py index bbf8bc1eb0..104c069396 100755 --- a/src/utils/settings.py +++ b/src/utils/settings.py @@ -262,7 +262,7 @@ def sys_argv_errors(): DESCRIPTION = "The command injection exploiter" AUTHOR = "Anastasios Stasinopoulos" VERSION_NUM = "4.0" -REVISION = "95" +REVISION = "96" STABLE_RELEASE = False VERSION = "v" if STABLE_RELEASE: