Skip to content

Memory usage in w3af

Jump to bottom Edit New page
Andres Riancho edited this page May 15, 2015 · 2 revisions

w3af has a long history of high memory usage, and just lately (April 2015) I've been focusing on fixing these issues. Here are some tasks I've been working on:

While working on these issues I understood and improved implementations of caches and base classes used by w3af. This document explains the main things I've found.

HTTP Responses

HTTPResponse instances use a lot memory because of the unicode body and the dom. In most cases the dom (lxml parsed body) will use ~3Mb and the body will use ~500k. Having a list of these objects in memory will kill performance.

These objects are kept in memory when referenced by BaseParser, and parsers are kept in memory by the ParserCache.

Parsers

BaseParser sub-classes are using the most memory. These are referenced by ParserCache. I always need to make sure that the parsers get properly un-referenced when they go out of the LRU.

lxml

Is a memory pig. We're using it for the XML-based parsers, and it sucks.

HTTP Requests (or FuzzableRequests)

These don't use a lot of memory but we might have a few thousand in memory during the audit (fuzzing, mutants, etc.) phase.

Add a custom footer
Add a custom sidebar
Clone this wiki locally