config file

2014-03-22 14:47:31 +01:00
parent be672cbcba
commit f9efdcb654
11 changed files with 139 additions and 2 deletions
--- a/lib/common/browser.rb
+++ b/lib/common/browser.rb
@@ -31,7 +31,10 @@ class Browser

    # sets browser defaults
    browser_defaults
-    # overrides defaults with user supplied values
+    # load config file
+    conf = options[:config_file]
+    load_config(conf) if conf
+    # overrides defaults with user supplied values (overwrite values from config)
    override_config(options)

    unless @hydra
@@ -74,6 +77,24 @@ class Browser
    @user_agent = "WPScan v#{WPSCAN_VERSION} (http://wpscan.org)"
  end

+  #
+  # If an option was set but is not in the new config_file
+  # it's value is kept
+  #
+  # @param [ String ] config_file
+  #
+  # @return [ void ]
+  def load_config(config_file = nil)
+
+    if File.symlink?(config_file)
+      raise '[ERROR] Config file is a symlink.'
+    else
+      data = JSON.parse(File.read(config_file))
+    end
+
+    override_config(data)
+  end
+
  # @param [ String ] url
  # @param [ Hash ] params
  #
--- a/lib/wpscan/wpscan_helper.rb
+++ b/lib/wpscan/wpscan_helper.rb
@@ -82,6 +82,7 @@ def help
  puts
  puts '--exclude-content-based "<regexp or string>" Used with the enumeration option, will exclude all occurrences based on the regexp or string supplied'
  puts '                                             You do not need to provide the regexp delimiters, but you must write the quotes (simple or double)'
+  puts '--config-file | -c <config file> Use the specified config file'
  puts '--user-agent | -a <User-Agent> Use the specified User-Agent'
  puts '--random-agent | -r Use a random User-Agent'
  puts '--follow-redirection  If the target url has a redirection, it will be followed without asking if you wanted to do so or not'
--- a/lib/wpscan/wpscan_options.rb
+++ b/lib/wpscan/wpscan_options.rb
@@ -247,6 +247,7 @@ class WpscanOptions
      ['--follow-redirection', GetoptLong::NO_ARGUMENT],
      ['--wp-content-dir', GetoptLong::REQUIRED_ARGUMENT],
      ['--wp-plugins-dir', GetoptLong::REQUIRED_ARGUMENT],
+      ['--config-file', '-c', GetoptLong::REQUIRED_ARGUMENT],
      ['--exclude-content-based', GetoptLong::REQUIRED_ARGUMENT],
      ['--basic-auth', GetoptLong::REQUIRED_ARGUMENT],
      ['--debug-output', GetoptLong::NO_ARGUMENT],