src/core/tunnel/handler.py from nil0x42/phpsploit

src/core/tunnel/handler.py

Summary

Maintainability

5 days

Test Coverage

File `handler.py` has 637 lines of code (exceeds 250 allowed). Consider refactoring.
Open

"""Phpsploit HTTP request handler"""
__all__ = ["Request", "new_request", "get_raw_requests"]
 
import sys
import re

Found in src/core/tunnel/handler.py - About 1 day to fix

Function `build_multipart_request` has a Cognitive Complexity of 34 (exceeds 5 allowed). Consider refactoring.
Open

    def build_multipart_request(self, method, php_payload):
        """build a multipart request for `php_payload` with HTTP `method`
 
        For infos about return format, read build_request() docstring.
        """

Found in src/core/tunnel/handler.py - About 5 hrs to fix

Read up
Read up

Function `Build` has a Cognitive Complexity of 29 (exceeds 5 allowed). Consider refactoring.
Open

    def Build(self, php_payload):
        """Main request Builder:
 
        if takes the basic php payload as argument,
        and returns the apropriate request object.

Found in src/core/tunnel/handler.py - About 4 hrs to fix

Read up
Read up

Cyclomatic complexity is too high in method Build. (19)
Open

    def Build(self, php_payload):
        """Main request Builder:
 
        if takes the basic php payload as argument,
        and returns the apropriate request object.

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Function `Send` has a Cognitive Complexity of 24 (exceeds 5 allowed). Consider refactoring.
Open

    def Send(self, request):
        """Main request Sender:
 
        if takes the concerned request object as argument
        and returns the unparsed and decapsulated phpsploit response

Found in src/core/tunnel/handler.py - About 3 hrs to fix

Read up
Read up

Cyclomatic complexity is too high in method build_multipart_request. (15)
Open

    def build_multipart_request(self, method, php_payload):
        """build a multipart request for `php_payload` with HTTP `method`
 
        For infos about return format, read build_request() docstring.
        """

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Cyclomatic complexity is too high in method Read. (12)
Open

    def Read(self, response):
        """Main request Reader
 
        if takes the http response data as argument
        and writes the __RESULT__'s php data into the self.response string,

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Cyclomatic complexity is too high in method Send. (11)
Open

    def Send(self, request):
        """Main request Sender:
 
        if takes the concerned request object as argument
        and returns the unparsed and decapsulated phpsploit response

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

`Request` has 22 functions (exceeds 20 allowed). Consider refactoring.
Open

class Request:
    """Phpsploit HTTP Request Handler
    """
    # the list of available methods
    methods = ['GET', 'POST']

Found in src/core/tunnel/handler.py - About 2 hrs to fix

Cyclomatic complexity is too high in method send_single_request. (9)
Open

    def send_single_request(self, request):
        """send a single request object element (a request object's single
        tuple, in the form mentionned in the build_request() docstring.
        A response dict() will be returned, with 'error' and 'data' keys.

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Cyclomatic complexity is too high in method build_forwarder. (9)
Open

    def build_forwarder(self, method, decoder):
        """build the effective payload forwarder, which is in fact
        a header using the PASSKEY setting as name.
        The payload forwarder is called by the remote backdoor, and then
        formats the final payload if necessary before executing it.

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Cyclomatic complexity is too high in method get_php_errors. (7)
Open

    @staticmethod
    def get_php_errors(data):
        """function designed to parse php errors from phpsploit response
        for better output and plugin debugging purposes.
        Its is called by the Read() function and returns the $error string

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Function `open` has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring.
Open

    def open(self, php_payload):
        """open a request to the server with the given php payload
        It respectively calls the Build(), Send() and Read() methods.
        if one of these methods returns a string, it will be considered as
        an error, so execution will stop, and self.error will be filled.

Found in src/core/tunnel/handler.py - About 1 hr to fix

Read up
Read up

Cyclomatic complexity is too high in method open. (6)
Open

    def open(self, php_payload):
        """open a request to the server with the given php payload
        It respectively calls the Build(), Send() and Read() methods.
        if one of these methods returns a string, it will be considered as
        an error, so execution will stop, and self.error will be filled.

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Cyclomatic complexity is too high in method load_multipart. (6)
Open

    def load_multipart(self):
        """enable the multi-request payload capability.
        - ask user to determine a remote writeable directory if
          tunnel opener couldn't file one automatically.
        - choose appropriate multipart_file, which is a remote temporary file

Found in src/core/tunnel/handler.py by radon

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Function `Read` has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring.
Open

    def Read(self, response):
        """Main request Reader
 
        if takes the http response data as argument
        and writes the __RESULT__'s php data into the self.response string,

Found in src/core/tunnel/handler.py - About 1 hr to fix

Read up
Read up

Function `send_single_request` has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring.
Open

    def send_single_request(self, request):
        """send a single request object element (a request object's single
        tuple, in the form mentionned in the build_request() docstring.
        A response dict() will be returned, with 'error' and 'data' keys.

Found in src/core/tunnel/handler.py - About 1 hr to fix

Read up
Read up

Function `init` has 28 lines of code (exceeds 25 allowed). Consider refactoring.
Open

    def __init__(self):
        # customizable variables
        self.target_obj = session.Conf.TARGET(call=False)
        self.hostname = self.target_obj.host
        self.port = self.target_obj.port

Found in src/core/tunnel/handler.py - About 1 hr to fix

Function `load_multipart` has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring.
Open

    def load_multipart(self):
        """enable the multi-request payload capability.
        - ask user to determine a remote writeable directory if
          tunnel opener couldn't file one automatically.
        - choose appropriate multipart_file, which is a remote temporary file

Found in src/core/tunnel/handler.py - About 55 mins to fix

Read up
Read up

Function `get_php_errors` has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring.
Open

    def get_php_errors(data):
        """function designed to parse php errors from phpsploit response
        for better output and plugin debugging purposes.
        Its is called by the Read() function and returns the $error string

Found in src/core/tunnel/handler.py - About 55 mins to fix

Read up
Read up

Function `build_forwarder` has a Cognitive Complexity of 7 (exceeds 5 allowed). Consider refactoring.
Open

    def build_forwarder(self, method, decoder):
        """build the effective payload forwarder, which is in fact
        a header using the PASSKEY setting as name.
        The payload forwarder is called by the remote backdoor, and then
        formats the final payload if necessary before executing it.

Found in src/core/tunnel/handler.py - About 35 mins to fix

Read up
Read up

Avoid too many `return` statements within this function.
Open

        return response

Found in src/core/tunnel/handler.py - About 30 mins to fix

Refactor this function to reduce its Cognitive Complexity from 34 to the 15 allowed.
Open

    def build_multipart_request(self, method, php_payload):

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Refactor this function to reduce its Cognitive Complexity from 24 to the 15 allowed.
Open

    def Send(self, request):

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Refactor this function to reduce its Cognitive Complexity from 29 to the 15 allowed.
Open

    def Build(self, php_payload):

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Remove this commented out code.
Open

        # import pprint

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Remove this commented out code.
Open

            # try:

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Rename method "Read" to prevent any misunderstanding/clash with method "read" defined on line 582
Open

    def Read(self, response):

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Remove the code after this "return".
Open

        return None

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Either merge this branch with the identical one on line "40" or change one of the implementations.
Open

            _RAW_REQUESTS_LIST.append(data)

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Similar blocks of code found in 2 locations. Consider refactoring.
Open

        elif "'%s'" not in hdr_payload and \
                '"%s"' not in hdr_payload:
            len_third = float(len(forwarder) / 3)
            len_third = int(round(len_third + 0.5))
            sample_sep = colorize("%Reset", "\n[*] ", "%Cyan")

Found in src/core/tunnel/handler.py and 1 other location - About 5 hrs to fix

Read up
Read up

src/core/tunnel/handler.py on lines 283..293

Similar blocks of code found in 2 locations. Consider refactoring.
Open

        if "'%s'" not in hdr_payload and \
           '"%s"' not in hdr_payload and \
           not b64_forwarder.isalnum():
            # create a visible sample of the effective b64 payload
            len_third = float(len(forwarder) / 3)

Found in src/core/tunnel/handler.py and 1 other location - About 5 hrs to fix

Read up
Read up

src/core/tunnel/handler.py on lines 298..306

Expected 2 blank lines, found 1
Open

class _CustomHTTPHandler(urllib.request.HTTPHandler):

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Do not use bare 'except'
Open

                except:

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Line too long (80 > 79 characters)
Open

                # only if test_size if bigger than the max_flaw, else return err

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Expected 2 blank lines after class or function definition, found 0
Open

http.client.__HTTPConnection__ = http.client.HTTPConnection

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Line too long (80 > 79 characters)
Open

                line = re.sub(r' \[<a.*?a>\]', '', line)  # remove html link tag

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Too many leading '#' for block comment
Open

### Log raw http requests with custom HTTP Connection Handlers

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Do not use bare 'except'
Open

            except:

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Expected 2 blank lines, found 1
Open

class _CustomHTTPConnection(http.client.HTTPConnection):

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Do not use bare 'except'
Open

                    except:

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Expected 2 blank lines after class or function definition, found 0
Open

urllib.request.__HTTPHandler__ = urllib.request.HTTPHandler

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Do not use bare 'except'
Open

            except:

Found in src/core/tunnel/handler.py by pep8

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Rename function "updateStatus" to match the regular expression ^[a-z_][a-z0-9_]{2,}$.
Open

        def updateStatus(curReqNum):

Found in src/core/tunnel/handler.py by sonar-python

Read up
Read up
Exclude checks
- Disable engine
- Disable check

Construct	Effect on CC	Reasoning
if	+1	An if statement is a single decision.
elif	+1	The elif statement adds another decision.
else	+0	The else statement does not cause a new decision. The decision is at the if.
for	+1	There is a decision at the start of the loop.
while	+1	There is a decision at the while statement.
except	+1	Each except branch adds a new conditional path of execution.
finally	+0	The finally block is unconditionally executed.
with	+1	The with statement roughly corresponds to a try/except block (see PEP 343 for details).
assert	+1	The assert statement internally roughly equals a conditional statement.
Comprehension	+1	A list/set/dict comprehension of generator expression is equivalent to a for loop.
Boolean Operator	+1	Every boolean operator (and, or) adds a decision point.

Construct	Effect on CC	Reasoning
if	+1	An if statement is a single decision.
elif	+1	The elif statement adds another decision.
else	+0	The else statement does not cause a new decision. The decision is at the if.
for	+1	There is a decision at the start of the loop.
while	+1	There is a decision at the while statement.
except	+1	Each except branch adds a new conditional path of execution.
finally	+0	The finally block is unconditionally executed.
with	+1	The with statement roughly corresponds to a try/except block (see PEP 343 for details).
assert	+1	The assert statement internally roughly equals a conditional statement.
Comprehension	+1	A list/set/dict comprehension of generator expression is equivalent to a for loop.
Boolean Operator	+1	Every boolean operator (and, or) adds a decision point.

Construct	Effect on CC	Reasoning
if	+1	An if statement is a single decision.
elif	+1	The elif statement adds another decision.
else	+0	The else statement does not cause a new decision. The decision is at the if.
for	+1	There is a decision at the start of the loop.
while	+1	There is a decision at the while statement.
except	+1	Each except branch adds a new conditional path of execution.
finally	+0	The finally block is unconditionally executed.
with	+1	The with statement roughly corresponds to a try/except block (see PEP 343 for details).
assert	+1	The assert statement internally roughly equals a conditional statement.
Comprehension	+1	A list/set/dict comprehension of generator expression is equivalent to a for loop.
Boolean Operator	+1	Every boolean operator (and, or) adds a decision point.

Construct	Effect on CC	Reasoning
if	+1	An if statement is a single decision.
elif	+1	The elif statement adds another decision.
else	+0	The else statement does not cause a new decision. The decision is at the if.
for	+1	There is a decision at the start of the loop.
while	+1	There is a decision at the while statement.
except	+1	Each except branch adds a new conditional path of execution.
finally	+0	The finally block is unconditionally executed.
with	+1	The with statement roughly corresponds to a try/except block (see PEP 343 for details).
assert	+1	The assert statement internally roughly equals a conditional statement.
Comprehension	+1	A list/set/dict comprehension of generator expression is equivalent to a for loop.
Boolean Operator	+1	Every boolean operator (and, or) adds a decision point.

Construct	Effect on CC	Reasoning
if	+1	An if statement is a single decision.
elif	+1	The elif statement adds another decision.
else	+0	The else statement does not cause a new decision. The decision is at the if.
for	+1	There is a decision at the start of the loop.
while	+1	There is a decision at the while statement.
except	+1	Each except branch adds a new conditional path of execution.
finally	+0	The finally block is unconditionally executed.
with	+1	The with statement roughly corresponds to a try/except block (see PEP 343 for details).
assert	+1	The assert statement internally roughly equals a conditional statement.
Comprehension	+1	A list/set/dict comprehension of generator expression is equivalent to a for loop.
Boolean Operator	+1	Every boolean operator (and, or) adds a decision point.

nil0x42/phpsploit

Summary

Maintainability

Test Coverage

Showing 44 of 44 total issues

File handler.py has 637 lines of code (exceeds 250 allowed). Consider refactoring. Open

Function build_multipart_request has a Cognitive Complexity of 34 (exceeds 5 allowed). Consider refactoring. Open

Function Build has a Cognitive Complexity of 29 (exceeds 5 allowed). Consider refactoring. Open

Cyclomatic complexity is too high in method Build. (19) Open

Function Send has a Cognitive Complexity of 24 (exceeds 5 allowed). Consider refactoring. Open

Cyclomatic complexity is too high in method build_multipart_request. (15) Open

Cyclomatic complexity is too high in method Read. (12) Open

Cyclomatic complexity is too high in method Send. (11) Open

Request has 22 functions (exceeds 20 allowed). Consider refactoring. Open

Cyclomatic complexity is too high in method send_single_request. (9) Open

Cyclomatic complexity is too high in method build_forwarder. (9) Open

Cyclomatic complexity is too high in method get_php_errors. (7) Open

Function open has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring. Open

Cyclomatic complexity is too high in method open. (6) Open

Cyclomatic complexity is too high in method load_multipart. (6) Open

Function Read has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring. Open

Function send_single_request has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring. Open

Function __init__ has 28 lines of code (exceeds 25 allowed). Consider refactoring. Open

Function load_multipart has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring. Open

Function get_php_errors has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring. Open

Function build_forwarder has a Cognitive Complexity of 7 (exceeds 5 allowed). Consider refactoring. Open

Avoid too many return statements within this function. Open

Refactor this function to reduce its Cognitive Complexity from 34 to the 15 allowed. Open

Refactor this function to reduce its Cognitive Complexity from 24 to the 15 allowed. Open

Refactor this function to reduce its Cognitive Complexity from 29 to the 15 allowed. Open

Remove this commented out code. Open

Remove this commented out code. Open

Rename method "Read" to prevent any misunderstanding/clash with method "read" defined on line 582 Open

Remove the code after this "return". Open

Either merge this branch with the identical one on line "40" or change one of the implementations. Open

Similar blocks of code found in 2 locations. Consider refactoring. Open

Similar blocks of code found in 2 locations. Consider refactoring. Open

Expected 2 blank lines, found 1 Open

Do not use bare 'except' Open

Line too long (80 > 79 characters) Open

Expected 2 blank lines after class or function definition, found 0 Open

Line too long (80 > 79 characters) Open

Too many leading '#' for block comment Open

Do not use bare 'except' Open

Expected 2 blank lines, found 1 Open

Do not use bare 'except' Open

Expected 2 blank lines after class or function definition, found 0 Open

Do not use bare 'except' Open

Rename function "updateStatus" to match the regular expression ^[a-z_][a-z0-9_]{2,}$. Open

There are no issues that match your filters.

Category

Status

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cyclomatic Complexity

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cyclomatic Complexity

Cyclomatic Complexity

Cyclomatic Complexity

Cyclomatic Complexity

Cyclomatic Complexity

Cyclomatic Complexity

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cyclomatic Complexity

Cyclomatic Complexity

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cognitive Complexity

A method's cognitive complexity is based on a few simple rules:

Further reading

Cognitive Complexity

File `handler.py` has 637 lines of code (exceeds 250 allowed). Consider refactoring.
Open

Function `build_multipart_request` has a Cognitive Complexity of 34 (exceeds 5 allowed). Consider refactoring.
Open

Function `Build` has a Cognitive Complexity of 29 (exceeds 5 allowed). Consider refactoring.
Open

Cyclomatic complexity is too high in method Build. (19)
Open

Function `Send` has a Cognitive Complexity of 24 (exceeds 5 allowed). Consider refactoring.
Open

Cyclomatic complexity is too high in method build_multipart_request. (15)
Open

Cyclomatic complexity is too high in method Read. (12)
Open

Cyclomatic complexity is too high in method Send. (11)
Open

`Request` has 22 functions (exceeds 20 allowed). Consider refactoring.
Open

Cyclomatic complexity is too high in method send_single_request. (9)
Open

Cyclomatic complexity is too high in method build_forwarder. (9)
Open

Cyclomatic complexity is too high in method get_php_errors. (7)
Open

Function `open` has a Cognitive Complexity of 15 (exceeds 5 allowed). Consider refactoring.
Open

Cyclomatic complexity is too high in method open. (6)
Open

Cyclomatic complexity is too high in method load_multipart. (6)
Open

Function `Read` has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring.
Open

Function `send_single_request` has a Cognitive Complexity of 13 (exceeds 5 allowed). Consider refactoring.
Open

Function `init` has 28 lines of code (exceeds 25 allowed). Consider refactoring.
Open

Function `load_multipart` has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring.
Open

Function `get_php_errors` has a Cognitive Complexity of 9 (exceeds 5 allowed). Consider refactoring.
Open

Function `build_forwarder` has a Cognitive Complexity of 7 (exceeds 5 allowed). Consider refactoring.
Open

Avoid too many `return` statements within this function.
Open

Refactor this function to reduce its Cognitive Complexity from 34 to the 15 allowed.
Open

Refactor this function to reduce its Cognitive Complexity from 24 to the 15 allowed.
Open

Refactor this function to reduce its Cognitive Complexity from 29 to the 15 allowed.
Open

Remove this commented out code.
Open

Remove this commented out code.
Open

Rename method "Read" to prevent any misunderstanding/clash with method "read" defined on line 582
Open

Remove the code after this "return".
Open

Either merge this branch with the identical one on line "40" or change one of the implementations.
Open

Similar blocks of code found in 2 locations. Consider refactoring.
Open

Similar blocks of code found in 2 locations. Consider refactoring.
Open

Expected 2 blank lines, found 1
Open

Do not use bare 'except'
Open

Line too long (80 > 79 characters)
Open

Expected 2 blank lines after class or function definition, found 0
Open

Line too long (80 > 79 characters)
Open

Too many leading '#' for block comment
Open

Do not use bare 'except'
Open

Expected 2 blank lines, found 1
Open

Do not use bare 'except'
Open

Expected 2 blank lines after class or function definition, found 0
Open

Do not use bare 'except'
Open

Rename function "updateStatus" to match the regular expression ^[a-z_][a-z0-9_]{2,}$.
Open