rspec tests for bruteforcer

spec/fixtures/wpscan/modules/bruteforce/wordlist.txt

@@ -0,0 +1,6 @@
+password1
+password2
+pa55w0rd
+# comment
+admin
+root

spec/lib/wpscan/modules/brute_force_spec.rb

@@ -0,0 +1,72 @@
+#--
+# WPScan - WordPress Security Scanner
+# Copyright (C) 2012
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+#++
+
+shared_examples_for "BruteForce" do
+  before :each do
+    @module             = WpScanModuleSpec.new("http://example.localhost")
+    @target_url         = @module.uri.to_s
+    @fixtures_dir       = SPEC_FIXTURES_WPSCAN_MODULES_DIR + "/bruteforce"
+    @wordlist           = @fixtures_dir + "/wordlist.txt"
+    @username           = "admin"
+
+    @module.extend(BruteForce)
+    @module.verbose = true
+    Browser.instance.max_threads = 1
+  end
+
+  describe "#lines_in_file" do
+    it "should return 6" do
+      lines = BruteForce.lines_in_file(@wordlist)
+      lines.should == 6
+    end
+  end
+
+  describe "#brute_force" do
+    before :each do
+
+    end
+
+    it "should get the correct password" do
+      passwords = []
+      File.open(@wordlist, "r").each do |password|
+        # ignore comments
+        passwords << password.strip unless password.strip[0,1] == "#"
+      end
+      # Last status must be 302 to get full code coverage
+      passwords.each do ||
+        stub_request(:any, @module.login_url).to_return( { :status => 200, :body => "login_error" },
+                                                         { :status => 0,   :body => "no reponse" },
+                                                         { :status => 50, :body => "server error" },
+                                                         { :status => 999, :body => "invalid" },
+                                                         { :status => 302, :body => "FOUND!" })
+      end
+
+      user = WpUser.new("admin", 1, nil)
+      result = @module.brute_force([user], @wordlist)
+      result.length.should == 1
+      result.should === [{ :name => "admin", :password => "root" }]
+    end
+
+    it "should cover the timeout branch and return an empty array" do
+      stub_request(:any, @module.login_url).to_timeout
+      user = WpUser.new("admin", 1, nil)
+      result = @module.brute_force([user], @wordlist)
+      result.should == []
+    end
+  end
+end

spec/lib/wpscan/wp_target_spec.rb

@@ -37,6 +37,7 @@ describe WpTarget do
   it_should_behave_like "WpFullPathDisclosure"
   it_should_behave_like "WpLoginProtection"
   it_should_behave_like "Malwares"
+  it_should_behave_like "BruteForce"
   it_should_behave_like "WpUsernames"
   it_should_behave_like "WpTimthumbs"
   it_should_behave_like "WpPlugins"

spec/lib/wpscan/wpscan_helper.rb

@@ -30,7 +30,7 @@ SPEC_FIXTURES_WPSCAN_WP_VERSION_DIR = SPEC_FIXTURES_WPSCAN_DIR + '/wp_version'
 
 class WpScanModuleSpec
   attr_reader :uri
-  attr_accessor :error_404_hash, :wp_content_dir
+  attr_accessor :error_404_hash, :wp_content_dir, :verbose
 
   def initialize(target_url)
     @uri = URI.parse(add_http_protocol(target_url))