search

epsylon / xsser

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
https://xsser.03c8.net
1.17k stars 238 forks source link

crawler error: object of type 'NoneType' has no len() http://example #21

Closed himanshuraja closed 7 years ago

himanshuraja commented 7 years ago

File "/usr/local/lib/python2.7/dist-packages/XSSer/crawler.py", line 217, in _emergency_parse data_len = len(html_data) crawler error: object of type 'NoneType' has no len() http://example

epsylon commented 7 years ago

Did you tryed to crawler a target url: http://example ?

himanshuraja commented 7 years ago

No actually I am not disclosing it,I know how to use that tool but this time it is giving this error.

epsylon commented 7 years ago

Of course this is not a correct exit for program flow. But I am asking you, from where comes that http://example url?. This is not included on any part of code. That was introduced by you, isn't ?. So, is normal that the crawler cannot works properly with an incomplete url. Did your tried with others?

himanshuraja commented 7 years ago

Hi, I apologize for confusing you without giving a proper explanation. http://example.com ->"the annotation for my test url,but it's just an annotation, I am using a proper url in terms of http://a.b.c.d" and that is not 'éxample.com' for sure" Note: ->refers to a,b,c,d->the ip bits of the url.
I am not disclosing the url on a public platform that's why I am saying it "http://example.com" and not showing the actual url.

epsylon commented 7 years ago

File "/usr/local/lib/python2.7/dist-packages/XSSer/crawler.py", line 217, in _emergency_parse data_len = len(html_data) crawler error: object of type 'NoneType' has no len()

That means that the crawler is not providing any data to len() and the exit to that is not correctly parsed. This is strange, because crawler should jumps to next request after fail.

Did something wrong happens during execution?. Did you tried again?. It is happening always you try?. It is happening with all your targets?.

I see that you are using python 2.7.x... Which version is?. Which OS are you using?

You can add --verbose to have more info about what's going on and paste here (trying to remove real info about your target) the results.

Also you can edit main.py and change DEBUG=0 to DEBUG=1 so you will have more detailed data about error.

Let me know if you try it.