44 lines
1.0 KiB
YAML
44 lines
1.0 KiB
YAML
id: dvwa-headless-automatic-login
|
|
info:
|
|
name: DVWA Headless Automatic Login
|
|
author: pdteam
|
|
severity: high
|
|
tags: headless,dvwa
|
|
|
|
headless:
|
|
- steps:
|
|
- args:
|
|
url: "{{BaseURL}}/login.php"
|
|
action: navigate
|
|
- action: waitload
|
|
- args:
|
|
by: x
|
|
xpath: /html/body/div/div[2]/form/fieldset/input
|
|
action: click
|
|
- action: waitload
|
|
- args:
|
|
by: x
|
|
value: admin
|
|
xpath: /html/body/div/div[2]/form/fieldset/input
|
|
action: text
|
|
- args:
|
|
by: x
|
|
xpath: /html/body/div/div[2]/form/fieldset/input[2]
|
|
action: click
|
|
- action: waitload
|
|
- args:
|
|
by: x
|
|
value: password
|
|
xpath: /html/body/div/div[2]/form/fieldset/input[2]
|
|
action: text
|
|
- args:
|
|
by: x
|
|
xpath: /html/body/div/div[2]/form/fieldset/p/input
|
|
action: click
|
|
- action: waitload
|
|
matchers:
|
|
- part: resp
|
|
type: word
|
|
words:
|
|
- "You have logged in as"
|