Optimize the showcase of Quark Script CWE-295

JerryTasi · web-flow · commit aac08fe556c7 · 2024-11-22T17:52:34.000+08:00
diff --git a/CWE-295/CWE-295.py b/CWE-295/CWE-295.py
@@ -6,15 +6,17 @@
     "proceed",                           # method name
     "()V"                                # descriptor
 ]
-OVERRIDE_METHOD = [
+OVERRIDDEN_METHOD = [
     "Landroid/webkit/WebViewClient;",    # class name
     "onReceivedSslError",                # method name
-    "(Landroid/webkit/WebView;"+" Landroid/webkit/SslErrorHandler;" + \
+    "(Landroid/webkit/WebView;" + " Landroid/webkit/SslErrorHandler;" + \
     " Landroid/net/http/SslError;)V"     # descriptor
 ]
 
 for sslProceedCaller in findMethodInAPK(SAMPLE_PATH, TARGET_METHOD):
-    if (sslProceedCaller.name == OVERRIDE_METHOD[1] and
-            sslProceedCaller.descriptor == OVERRIDE_METHOD[2] and
-            OVERRIDE_METHOD[0] in sslProceedCaller.findSuperclassHierarchy()):
-        print(f"CWE-295 is detected in method, {sslProceedCaller.fullName}")
+    if (
+        sslProceedCaller.name == OVERRIDDEN_METHOD[1]
+        and sslProceedCaller.descriptor == OVERRIDDEN_METHOD[2]
+        and OVERRIDDEN_METHOD[0] in sslProceedCaller.findSuperclassHierarchy()
+    ):
+        print(f"CWE-295 is detected in method, {sslProceedCaller.fullName}")
