mirror of
https://github.com/Ekultek/Zeus-Scanner.git
synced 2026-03-11 08:55:51 +00:00
created a new tamper script, this will obfuscate the script by it's HTML entity IE < == < > == >
This commit is contained in:
parent
e5b52d7b45
commit
14a7204e88
3 changed files with 32 additions and 2 deletions
|
|
@ -37,6 +37,7 @@ d41d8cd98f00b204e9800998ecf8427e ./lib/tamper_scripts/__init__.py
|
|||
9fd42d65993aa20d1bf5acbc4d042d2e ./lib/tamper_scripts/base64_encode.py
|
||||
f77b7a9a19b94e26903eeecf5a787ea3 ./lib/tamper_scripts/space2null_encode.py
|
||||
3b8c95a6a3b7cecce5118f2fb1ccc6b8 ./lib/tamper_scripts/appendnull_encode.py
|
||||
8e8792e38649f18d90bb0084202bb59e ./lib/tamper_scripts/obfuscateentity_encode.py
|
||||
d41d8cd98f00b204e9800998ecf8427e ./lib/__init__.py
|
||||
6299b188a730844954044887f528435a ./lib/firewall/cloudfront.py
|
||||
d41d8cd98f00b204e9800998ecf8427e ./lib/firewall/__init__.py
|
||||
|
|
@ -107,7 +108,7 @@ daab1cac629a5f59abfeb510d0cb9b67 ./lib/header_check/__init__.py
|
|||
de4254c5e40f7aa4fb81e0608f758a2c ./lib/core/decorators.py
|
||||
4433353fb5c55578391d8b4006191ee8 ./lib/core/errors.py
|
||||
d41d8cd98f00b204e9800998ecf8427e ./lib/core/__init__.py
|
||||
93f0a11909b7baf0581e25d289721732 ./lib/core/settings.py
|
||||
6a6d454292a186599e37925975f8b656 ./lib/core/settings.py
|
||||
afc8dc07dfdac4f70795ba718832f5a6 ./lib/core/parse.py
|
||||
d41d8cd98f00b204e9800998ecf8427e ./var/__init__.py
|
||||
d41d8cd98f00b204e9800998ecf8427e ./var/auto_issue/__init__.py
|
||||
|
|
|
|||
|
|
@ -45,7 +45,7 @@ CLONE = "https://github.com/ekultek/zeus-scanner.git"
|
|||
ISSUE_LINK = "https://github.com/ekultek/zeus-scanner/issues"
|
||||
|
||||
# current version <major.minor.commit.patch ID>
|
||||
VERSION = "1.4.6".format(PATCH_ID)
|
||||
VERSION = "1.4.7".format(PATCH_ID)
|
||||
|
||||
# colors to output depending on the version
|
||||
VERSION_TYPE_COLORS = {"dev": 33, "stable": 92, "other": 30}
|
||||
|
|
|
|||
29
lib/tamper_scripts/obfuscateentity_encode.py
Normal file
29
lib/tamper_scripts/obfuscateentity_encode.py
Normal file
|
|
@ -0,0 +1,29 @@
|
|||
from lib.core.settings import (
|
||||
logger,
|
||||
set_color
|
||||
)
|
||||
|
||||
|
||||
def tamper(payload, **kwargs):
|
||||
warning = kwargs.get("warning", True)
|
||||
|
||||
if warning:
|
||||
logger.warning(set_color(
|
||||
"obfuscating payloads by their entity encoding equivalent may increase the "
|
||||
"risk of false positives", level=30
|
||||
))
|
||||
|
||||
skip = ";"
|
||||
encoding_schema = {
|
||||
" ": " ", "<": "<", ">": ">",
|
||||
"&": "&", '"': """, "'": "'",
|
||||
}
|
||||
retval = ""
|
||||
for char in str(payload):
|
||||
if char in encoding_schema.iterkeys():
|
||||
retval += encoding_schema[char]
|
||||
elif char not in encoding_schema.iterkeys() and char != skip:
|
||||
retval += char
|
||||
else:
|
||||
retval += char
|
||||
return retval
|
||||
Loading…
Reference in a new issue