search

Arachni / arachni

Web Application Security Scanner Framework
http://www.arachni-scanner.com
Other
3.78k stars 764 forks source link

Error when scanning the OWASP Benchmark #974

Open buekera opened 6 years ago

buekera commented 6 years ago

While playing around with Arachni against the OWASP Benchmark, I am noticing Arachni stopping the scan prematurely with always the same error:

--------------------------------------------------------------------------------
[2018-04-25 11:04:50 +0200] [ArgumentError] invalid byte sequence in UTF-8
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:22:in `strip'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:22:in `value='
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:18:in `initialize'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/sax.rb:58:in `new'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/sax.rb:58:in `text'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:70:in `sax_html'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:70:in `block in parse'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/support/cache/base.rb:108:in `call'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/support/cache/base.rb:108:in `fetch'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:66:in `parse'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:243:in `document'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:423:in `paths'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/page.rb:309:in `paths'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/data.rb:207:in `push_paths_from_page'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:98:in `audit_page'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:228:in `audit_queues'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework/multi_instance.rb:222:in `audit_queues'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:202:in `block in audit'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:177:in `loop'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:177:in `audit'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `block in run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `call'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `exception_jail'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Parent:
[2018-04-25 11:04:50 +0200] Arachni::RPC::Server::Framework
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Block:
[2018-04-25 11:04:50 +0200] #<Proc:0x0000000412cee8@/home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117>
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Caller:
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `exception_jail'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2018-04-25 11:04:50 +0200] --------------------------------------------------------------------------------

Scanner Options:

OPTIONS:
---
audit:
  parameter_values: true
  exclude_vector_patterns: []
  include_vector_patterns: []
  link_templates: []
  links: true
  forms: true
  cookies: true
  jsons: true
  xmls: true
  ui_forms: true
  ui_inputs: true
datastore:
  token: a70aee5e532a10b997dfe2f0f9d5c37c
http:
  user_agent: Arachni/v1.5.1
  request_timeout: 10000
  request_redirect_limit: 5
  request_concurrency: 20
  request_queue_size: 100
  request_headers: {}
  response_max_size: 500000
  cookies: {}
  authentication_type: auto
input:
  values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  default_values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  without_defaults: true
  force: false
session: {}
scope:
  redundant_path_patterns: {}
  dom_depth_limit: 5
  exclude_file_extensions:
  - "[]"
  exclude_path_patterns: []
  exclude_content_patterns: []
  include_path_patterns: []
  restrict_paths: []
  extend_paths: []
  url_rewrites: {}
browser_cluster:
  local_storage: {}
  wait_for_elements: {}
  pool_size: 6
  job_timeout: 10
  worker_time_to_live: 100
  ignore_images: false
  screen_width: 1600
  screen_height: 1200
checks:
- sql_injection
- sql_injection_differential
- sql_injection_timing
platforms: []
plugins:
  autothrottle: {}
  discovery: {}
  healthmap: {}
  timing_attacks: {}
  uniformity: {}
no_fingerprinting: false
authorized_by: 
url: https://172.17.0.2:8443/benchmark/sqli-Index.html

The OWASP Benchmark is running within a docker container if you're wondering about the url.

Can anyone help me with this?

Zapotek commented 6 years ago

Can you give the nighlties a try?

buekera commented 6 years ago

Sure!

maksim-pinguin commented 5 years ago

Hi, I got a silimar issue!

Can you give the nighlties a try? I tried - same result.

I first tried the docker image. Than the arachni/v1.5.1 local. Than the nightlies as suggested. Always the same result. I get this error after the first few findings. This is the error log from the nightlies locally:

2019-01-07 03:24:34 +0100 --------------------------------------------------------------------------------
ENV:
---
LD_LIBRARY_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib:/usr/lib:/usr/local/lib"
FONTCONFIG_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/home/arachni/.fonts"
LC_MEASUREMENT: de_DE.UTF-8
LC_PAPER: de_DE.UTF-8
LC_MONETARY: de_DE.UTF-8
XDG_MENU_PREFIX: gnome-
LANG: en_US.UTF-8
GDM_LANG: en_US.UTF-8
LESS: "-r"
DISPLAY: ":1"
OLDPWD: "/home/maksim/tmp/arachni-2.0dev-1.0dev"
C_INCLUDE_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/include"
EDITOR: "/usr/bin/vim"
RUBY_VERSION: ruby-2.4.4
COLORTERM: truecolor
GEM_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems"
USERNAME: maksim
MOZ_PLUGIN_PATH: "/usr/lib/mozilla/plugins"
XDG_VTNR: '2'
SSH_AUTH_SOCK: "/run/user/1000/keyring/ssh"
LESS_TERMCAP_so: "\e[01;47;34m"
LESS_TERMCAP_se: "\e[0m"
XDG_SESSION_ID: '2'
USER: maksim
DESKTOP_SESSION: gnome
GRADLE_HOME: "/usr/share/java/gradle"
GNOME_TERMINAL_SCREEN: "/org/gnome/Terminal/screen/b731264c_0c3d_4aef_86e6_cb6e469c244e"
QT_QPA_PLATFORMTHEME: qt5ct
PWD: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin"
HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/home/arachni"
XDG_SESSION_TYPE: x11
XDG_SESSION_DESKTOP: gnome
GEM_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
LESS_TERMCAP_mb: "\e[01;32m"
LESS_TERMCAP_md: "\e[01;32m"
LESS_TERMCAP_me: "\e[0m"
LIBRARY_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib:/usr/lib:/usr/local/lib"
GJS_DEBUG_OUTPUT: stderr
LC_NUMERIC: de_DE.UTF-8
RAILS_ENV: production
MAIL: "/var/spool/mail/maksim"
ARACHNI_WEBUI_LOGDIR: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/logs/webui"
VISUAL: "/usr/bin/nano"
WINDOWPATH: '2'
TERM: xterm-256color
SHELL: "/usr/bin/zsh"
VTE_VERSION: '5403'
ARACHNI_FRAMEWORK_LOGDIR: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/logs/framework"
XDG_CURRENT_DESKTOP: GNOME
RUBYLIB: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0/x86_64-linux:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0/x86_64-linux"
GNOME_TERMINAL_SERVICE: ":1.53"
XDG_SEAT: seat0
SHLVL: '1'
MAVEN_OPTS: "-Xmx512m"
GDMSESSION: gnome
LOGNAME: maksim
DBUS_SESSION_BUS_ADDRESS: unix:path=/run/user/1000/bus
XDG_RUNTIME_DIR: "/run/user/1000"
XAUTHORITY: "/run/user/1000/gdm/Xauthority"
CPLUS_INCLUDE_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/include"
MY_RUBY_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby"
LESS_TERMCAP_ue: "\e[0m"
LESS_TERMCAP_us: "\e[01;36m"
PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/../bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/lib/jvm/default/bin:/usr/bin/site_perl:/usr/bin/vendor_perl:/usr/bin/core_perl"
IRBRC: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/.irbrc"
GJS_DEBUG_TOPICS: JS ERROR;JS LOG
SESSION_MANAGER: local/maksbook:@/tmp/.ICE-unix/18181,unix/maksbook:/tmp/.ICE-unix/18181
LC_TIME: de_DE.UTF-8
RACK_ENV: development
BUNDLE_GEMFILE: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/arachni-ui-web/Gemfile"
BUNDLER_ORIG_BUNDLE_BIN_PATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_BUNDLE_GEMFILE: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/arachni-ui-web/Gemfile"
BUNDLER_ORIG_BUNDLER_ORIG_MANPATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_BUNDLER_VERSION: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_GEM_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
BUNDLER_ORIG_GEM_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
BUNDLER_ORIG_MANPATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/../bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/lib/jvm/default/bin:/usr/bin/site_perl:/usr/bin/vendor_perl:/usr/bin/core_perl"
BUNDLER_ORIG_RB_USER_INSTALL: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_RUBYLIB: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0/x86_64-linux:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0/x86_64-linux"
BUNDLER_ORIG_RUBYOPT: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLE_BIN_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/gems/bundler-1.16.4/exe/bundle"
BUNDLER_VERSION: 1.16.2
RUBYOPT: "-rbundler/setup"
MANPATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/gems/kramdown-1.17.0/man"
arachni_options: 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
--------------------------------------------------------------------------------
OPTIONS:
---
datastore:
  token: 8fa8222c4eab1e16b3523b3d3e1617fc
browser_cluster:
  local_storage: {}
  session_storage: {}
  wait_for_elements: {}
  pool_size: 6
  job_timeout: 10
  worker_time_to_live: 100
  ignore_images: false
  screen_width: 1600
  screen_height: 1200
audit:
  parameter_values: true
  exclude_vector_patterns: []
  include_vector_patterns: []
  link_templates: []
  links: true
  forms: true
  cookies: true
  jsons: true
  xmls: true
  ui_forms: true
  ui_inputs: true
  nested_cookies: true
scope:
  redundant_path_patterns: {}
  dom_depth_limit: 5
  exclude_file_extensions: []
  exclude_path_patterns: []
  exclude_content_patterns: []
  include_path_patterns: []
  restrict_paths: []
  extend_paths: []
  url_rewrites: {}
http:
  user_agent: Arachni/v2.0dev
  request_timeout: 10000
  request_redirect_limit: 5
  request_concurrency: 20
  request_queue_size: 100
  request_headers: {}
  response_max_size: 500000
  cookies: {}
  authentication_type: auto
session: {}
input:
  values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  default_values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  without_defaults: true
  force: false
checks:
- allowed_methods
- backdoors
- backup_directories
- backup_files
- captcha
- code_injection
- code_injection_php_input_wrapper
- code_injection_timing
- common_admin_interfaces
- common_directories
- common_files
- cookie_set_for_parent_domain
- credit_card
- csrf
- cvs_svn_users
- directory_listing
- emails
- file_inclusion
- form_upload
- hsts
- htaccess_limit
- html_objects
- http_only_cookies
- http_put
- insecure_client_access_policy
- insecure_cookies
- insecure_cors_policy
- insecure_cross_domain_policy_access
- insecure_cross_domain_policy_headers
- interesting_responses
- ldap_injection
- localstart_asp
- mixed_resource
- no_sql_injection
- no_sql_injection_differential
- origin_spoof_access_restriction_bypass
- os_cmd_injection
- os_cmd_injection_timing
- password_autocomplete
- path_traversal
- private_ip
- response_splitting
- rfi
- session_fixation
- source_code_disclosure
- sql_injection
- sql_injection_differential
- sql_injection_timing
- ssn
- trainer
- unencrypted_password_forms
- unvalidated_redirect
- unvalidated_redirect_dom
- webdav
- x_frame_options
- xpath_injection
- xss
- xss_dom
- xss_dom_script_context
- xss_event
- xss_path
- xss_script_context
- xss_tag
- xst
- xxe
platforms: []
plugins:
  autothrottle: {}
  discovery: {}
  healthmap: {}
  timing_attacks: {}
  uniformity: {}
no_fingerprinting: false
authorized_by: 
url: https://192.168.101.193:8443/benchmark
--------------------------------------------------------------------------------
[2019-01-07 03:24:34 +0100] [ArgumentError] invalid byte sequence in UTF-8
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser/sax.rb:58:in `strip'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser/sax.rb:58:in `text'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:70:in `sax_html'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:70:in `block in parse'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/support/cache/base.rb:108:in `fetch'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:66:in `parse'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:245:in `document'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:433:in `paths'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/page.rb:309:in `paths'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/data.rb:207:in `push_paths_from_page'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:98:in `audit_page'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:228:in `audit_queues'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework/multi_instance.rb:222:in `audit_queues'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:202:in `block in audit'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:177:in `loop'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:177:in `audit'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `block in run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/utilities.rb:425:in `exception_jail'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Parent:
[2019-01-07 03:24:34 +0100] Arachni::RPC::Server::Framework
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Block:
[2019-01-07 03:24:34 +0100] #<Proc:0x0000000003ef9270@/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117>
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Caller:
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni- /lib/arachni/utilities.rb:424:in `exception_jail'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2019-01-07 03:24:34 +0100] --------------------------------------------------------------------------------
maksim-pinguin commented 5 years ago

@buekera did the nighlties solve your problem?