Closed stryker2k2 closed 3 months ago
Attention: Patch coverage is 71.42857%
with 2 lines
in your changes are missing coverage. Please review.
Project coverage is 92%. Comparing base (
5cef4c0
) to head (cc82c43
).
Files | Patch % | Lines |
---|---|---|
bbot/core/helpers/interactsh.py | 72% | 2 Missing :warning: |
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
@stryker2k2 were you able to reproduce this error?
I was able to reproduce the flood of interactsh errors, yes. On multiple occasions with various combinations of modules and targets.
With this commit, I haven't seen any interactsh errors at all when ran against the same tests as before.
@stryker2k2 thanks for your work but before we merge this we need to understand what is causing this bug and why the fix works.
From Amir's screenshot it looks like every poll is falling. It seems strange that issuing more requests would fix it. Some questions I have would be, roughly what percentage of requests are failing and what kind of failures are they? Are they timeouts? DNS resolution errors? Is the web server rejecting the connection? Understanding this will help us find the best approach for fixing it.
There seems to be some confusion as to the cause of the bug. Since the true cause has not been identified, I am closing this PR.
Summary
Both amiremami and I have noticed a flood of
interactsh
errors in our scans. All of the pytests for interactsh worked but it seemed that doing it in production would throw anError polling interact.sh: No response from server
error. This was confusing because we would send a registration request to the Interactsh Team asking for a server instance to be spun up specifically for this; no reason to not get a response.I've added an
asyncio.sleep(0.2)
and a smallrange(5)
loop to ensure that interactsh at least communicates with the server once. If it gets a good response, it'll jump out of that loop and continue.Since Interactsh would throw an error nearly everytime, both generic_ssrf and dotnetnuke (which depend on it) have been useless.
Review
bbot -t tesla.com -m httpx generic_ssrf
bbot -t tesla.com -f passive subdomain-enum web-thorough cloud-enum -m gowitness fingerprintx wafw00f bypass403 -em smuggler azure_realm, azure_tenant bucket_amazon bucket_azure bucket_digitalocean bucket_file_enum bucket_firebase bucket_google -om asset_inventory emails json