search

andresriancho / w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.
http://w3af.org/
4.56k stars 1.22k forks source link

'NoneType' object has no attribute 'makefile'" at httplib.py:__init__():346 #2171

Closed 1d3df9903ad closed 10 years ago

1d3df9903ad commented 10 years ago

Version Information

  Python version: 2.7.3 (default, Mar 13 2014, 11:03:55) [GCC 4.7.2]
  GTK version: 2.24.10
  PyGTK version: 2.24.0
  w3af version:
    w3af - Web Application Attack and Audit Framework
    Version: 1.6
    Distribution: Kali Linux
    Author: Andres Riancho and the w3af team.

Traceback

An exception was found while running infrastructure.find_vhosts on "http://domain:8081/path/foo//ExtJs/ext-all.js | Method: GET". The exception was: "'NoneType' object has no attribute 'makefile'" at httplib.py:__init__():346.The full traceback is:
  File "/usr/share/w3af/w3af/core/controllers/core_helpers/consumers/crawl_infrastructure.py", line 397, in _discover_worker
    result = plugin.discover_wrapper(fuzzable_request)
  File "/usr/share/w3af/w3af/core/controllers/plugins/infrastructure_plugin.py", line 46, in discover_wrapper
    return self.discover(fuzzable_request_copy)
  File "/usr/share/w3af/w3af/plugins/infrastructure/find_vhosts.py", line 64, in discover
    analysis_result = self._analyze(fuzzable_request)
  File "/usr/share/w3af/w3af/plugins/infrastructure/find_vhosts.py", line 77, in _analyze
    vhost_list.extend(self._get_dead_links(fuzzable_request))
  File "/usr/share/w3af/w3af/plugins/infrastructure/find_vhosts.py", line 113, in _get_dead_links
    fuzzable_request.get_uri(), cache=True)
  File "/usr/share/w3af/w3af/core/controllers/plugins/plugin.py", line 208, in meth
    return attr(*args, **kwargs)
  File "/usr/share/w3af/w3af/core/data/url/extended_urllib.py", line 296, in GET
    return self._send(req, grep=grep)
  File "/usr/share/w3af/w3af/core/data/url/extended_urllib.py", line 456, in _send
    res = self._opener.open(req)
  File "/usr/lib/python2.7/urllib2.py", line 407, in open
    response = meth(req, response)
  File "/usr/share/w3af/w3af/core/data/url/handlers/mangle.py", line 107, in http_response
    response = self._HTTPResponse2httplib(response, http_resp)
  File "/usr/share/w3af/w3af/core/data/url/handlers/mangle.py", line 120, in _HTTPResponse2httplib
    strict=0, method=None)
  File "/usr/share/w3af/w3af/core/data/url/handlers/keepalive.py", line 199, in __init__
    method=method)
  File "/usr/lib/python2.7/httplib.py", line 346, in __init__
    self.fp = sock.makefile('rb', 0)

Enabled Plugins

{'attack': {},
 'audit': {'blind_sqli': {},
           'buffer_overflow': {},
           'cors_origin': {},
           'csrf': {},
           'dav': {},
           'eval': {},
           'file_upload': {},
           'format_string': {},
           'frontpage': {},
           'generic': {},
           'global_redirect': {},
           'htaccess_methods': {},
           'ldapi': {},
           'lfi': {},
           'mx_injection': {},
           'os_commanding': {},
           'phishing_vector': {},
           'preg_replace': {},
           'redos': {},
           'response_splitting': {},
           'rfi': {},
           'sqli': {},
           'ssi': {},
           'ssl_certificate': {},
           'un_ssl': {},
           'xpath': {},
           'xss': {},
           'xst': {}},
 'auth': {},
 'bruteforce': {},
 'crawl': {'archive_dot_org': {},
           'bing_spider': {},
           'content_negotiation': {},
           'digit_sum': {},
           'dir_file_bruter': {},
           'dot_listing': {},
           'find_backdoors': {},
           'find_captchas': {},
           'find_dvcs': {},
           'genexus_xml': {},
           'ghdb': {},
           'google_spider': {},
           'import_results': {},
           'oracle_discovery': {},
           'phishtank': {},
           'phpinfo': {},
           'pykto': {},
           'ria_enumerator': {},
           'robots_txt': {},
           'sitemap_xml': {},
           'spider_man': {},
           'url_fuzzer': {},
           'urllist_txt': {},
           'user_dir': {},
           'web_spider': {},
           'wordnet': {},
           'wordpress_enumerate_users': {},
           'wordpress_fingerprint': {},
           'wordpress_fullpathdisclosure': {},
           'wsdl_finder': {}},
 'evasion': {},
 'grep': {'ajax': {},
          'analyze_cookies': {},
          'blank_body': {},
          'cache_control': {},
          'clamav': {},
          'click_jacking': {},
          'code_disclosure': {},
          'credit_cards': {},
          'cross_domain_js': {},
          'csp': {},
          'directory_indexing': {},
          'dom_xss': {},
          'dot_net_event_validation': {},
          'error_500': {},
          'error_pages': {},
          'feeds': {},
          'form_autocomplete': {},
          'get_emails': {},
          'hash_analysis': {},
          'html_comments': {},
          'http_auth_detect': {},
          'http_in_body': {},
          'lang': {},
          'meta_tags': {},
          'motw': {},
          'objects': {},
          'oracle': {},
          'password_profiling': {},
          'path_disclosure': {},
          'private_ip': {},
          'ssn': {},
          'strange_headers': {},
          'strange_http_codes': {},
          'strange_parameters': {},
          'strange_reason': {},
          'svn_users': {},
          'symfony': {},
          'url_session': {},
          'user_defined_regex': {},
          'wsdl_greper': {},
          'xss_protection_header': {}},
 'infrastructure': {'afd': {},
                    'allowed_methods': {},
                    'detect_reverse_proxy': {},
                    'detect_transparent_proxy': {},
                    'dns_wildcard': {},
                    'domain_dot': {},
                    'dot_net_errors': {},
                    'find_jboss': {},
                    'find_vhosts': {},
                    'finger_bing': {},
                    'finger_google': {},
                    'finger_pks': {},
                    'fingerprint_WAF': {},
                    'fingerprint_os': {},
                    'frontpage_version': {},
                    'halberd': {},
                    'hmap': {},
                    'http_vs_https_dist': {},
                    'php_eggs': {},
                    'server_header': {},
                    'server_status': {},
                    'shared_hosting': {},
                    'xssed_dot_com': {},
                    'zone_h': {}},
 'mangle': {'sed': {}},
 'output': {}}
andresriancho commented 10 years ago

Related with #2173

andresriancho commented 10 years ago

Duplicates keepalive: self.fp = sock.makefile('rb', 0) #2172