WEBVTT 00:01.160 --> 00:09.760 Okay, now I'm going to create or I'm going to change the program in a way that and be completely generic. 00:09.920 --> 00:10.320 Okay. 00:11.480 --> 00:16.240 And we use this, uh, program to. 00:19.640 --> 00:24.160 To find vulnerabilities for all websites. 00:24.200 --> 00:24.640 Okay. 00:25.880 --> 00:31.920 For example, we are going to check for, uh, some website that they are using, get method, some 00:31.960 --> 00:34.520 to some in some forms. 00:34.960 --> 00:36.760 And also in a lot of ways. 00:36.800 --> 00:47.320 So I'm going to create or I'm going to use this program in a way that we could use this in a lot of, 00:47.840 --> 00:50.960 uh, places and a lot of, on a lot of websites. 00:51.000 --> 00:51.720 Okay. 00:51.760 --> 00:57.480 So, uh, let's create a method to run this program. 00:57.640 --> 00:58.080 Okay. 00:58.600 --> 01:04.200 So I'm going to name this method, uh, run. 01:07.390 --> 01:08.070 Scanner. 01:09.750 --> 01:16.150 So I'm going to give the self method as an argument here, because we give the self to all method when 01:16.150 --> 01:17.310 it is inside a class. 01:17.790 --> 01:25.270 So let's use a for loop here for I have length in self dot. 01:27.150 --> 01:32.310 I'm going to check for all the target link and that is. 01:34.470 --> 01:36.070 Here you see we have target link. 01:36.110 --> 01:37.230 It is a list. 01:37.550 --> 01:41.030 So I'm going to use the target link. 01:43.190 --> 01:46.470 And we have the forms. 01:46.470 --> 01:53.030 So this forms is going to be equal to self dot extract forms okay. 01:53.070 --> 01:55.070 When we are trying to. 01:57.310 --> 02:02.590 Uh first we give a link and then we extract all the from forms from that. 02:02.630 --> 02:02.870 Okay. 02:02.910 --> 02:06.550 From that specific link that is uh here. 02:06.670 --> 02:14.300 And then we give each link for this extract form because we created this method here we give the length 02:14.300 --> 02:14.940 keyword. 02:15.060 --> 02:16.500 The link is here. 02:16.540 --> 02:16.780 Okay. 02:16.820 --> 02:17.340 It is a key. 02:17.380 --> 02:25.220 Right now is a keyword actually or available for each target in target link, which is a list, and 02:25.220 --> 02:26.700 it is each element of that. 02:26.700 --> 02:28.780 So it will give me a lot of link. 02:28.820 --> 02:32.500 And for each link I give that to extract form which is a method. 02:33.060 --> 02:33.740 So. 02:36.220 --> 02:42.220 Now that I have these forms I'm going to go inside this form. 02:42.220 --> 02:50.980 So let's use for form not forms form this time form in forms okay. 02:51.660 --> 02:56.300 And in here I'm going to print something like this. 02:58.380 --> 03:02.660 Uh testing form in. 03:05.100 --> 03:09.820 A link that we just get it from uh here. 03:09.860 --> 03:10.260 Okay. 03:12.500 --> 03:18.780 And then I'm going to check for some kind of link, for example. 03:18.900 --> 03:22.890 Let's see here we have name is equal to test. 03:22.890 --> 03:30.290 That means whenever a link have this equality inside it that means that form use get method. 03:30.290 --> 03:32.050 So we need to check this okay. 03:33.770 --> 03:35.330 So I use if here. 03:35.690 --> 03:50.530 If this equality assigned is in link then let's print okay I want to print. 03:54.170 --> 03:56.970 That this thing. 04:04.370 --> 04:05.130 Link okay. 04:09.410 --> 04:10.290 So perfect. 04:10.490 --> 04:14.210 Now this run scanner is working I'm sure it's working. 04:14.210 --> 04:16.690 If you have any kind of error, we will be solving it. 04:16.690 --> 04:19.290 Okay, so how can we use it now? 04:19.290 --> 04:28.560 We will be using it first to get, uh, first to extract forms and then we will be testing it on for 04:28.560 --> 04:32.680 example, x axis attacks. 04:32.720 --> 04:33.520 Okay. 04:33.520 --> 04:41.920 First we will be extracting form and then we for each of these forms we are going to print the links. 04:42.520 --> 04:48.880 And if the link has this assigned then we are going to test that on that link. 04:48.920 --> 04:49.360 Okay. 04:49.920 --> 04:58.680 So first let's go and learn something about x axis attacks and then uh implement that here. 04:59.160 --> 05:06.880 So now if you want to do any kind of um attack on the, on a specific website. 05:06.880 --> 05:11.120 So we will be creating that method and then we will be calling them here. 05:11.440 --> 05:16.040 So for example, if you're using if you're going to do an attack on this kind of link. 05:16.040 --> 05:18.720 So we will be calling the function or the method here. 05:18.720 --> 05:22.200 Or if you're going to other kind of uh attacks. 05:22.280 --> 05:24.840 So we will be using them here. 05:24.880 --> 05:25.040 Okay. 05:25.080 --> 05:26.760 We will be calling them here. 05:27.280 --> 05:32.080 So let's go and learn something about X is is attacks.