Commit graph

85 commits

Author SHA1 Message Date
ekultek
0ae36e2489 fixes an issue where the options would not pass to nmap 2017-11-25 20:12:53 -06:00
ekultek
ddf46c6bbe minor edits to some of the attacks, also created an interactive pause that you will be able to skip or exit from 2017-11-25 19:59:09 -06:00
ekultek
6f62049eb8 optimization for the time it takes to load the program, should be quicker now, created a search for public PGP keys will take your sites domain and search for any public PGP keys it can find, renamed some files to make more sense 2017-11-22 15:07:24 -06:00
ekultek
2f250a5a2d update to the gist lookup search, multiple regexs will be tried in order to further try and discover some information 2017-11-21 12:39:51 -06:00
ekultek
52af437fe4 moved shutdown, startup, and prompt to lib.core.common due to how much they are used 2017-11-20 14:27:08 -06:00
ekultek
9eca1950cb created constants of all the log filenames, adjusted files accordingly 2017-11-20 14:04:11 -06:00
ekultek
fd4c89ffb8 created a common.py file and drafted write_to_log_file into it, also created an HTTP_HEADER class that will be used instead of repeating myself, fixed everything accordingly 2017-11-20 11:43:27 -06:00
ekultek
d60ad9391b bumped from three pages to five pages 2017-11-16 13:30:03 -06:00
ekultek
d75bb85955 created a Github Gist searching tool that will search 3 pages of Gists (usually around 500 links) and create a regex for the found URL, from there it will search through all the Gists and save any of them that have a match (issue #153) 2017-11-16 13:29:24 -06:00
ekultek
8b3a776af4 patch for an issue where the program would fail due to firefox and geckodriver not liking eachother (issue #154, issue #151), also patches an issue with the admin panel where it would write to a file no matter what happened (issue #152) 2017-11-16 07:34:09 -06:00
ekultek
55b1285809 multiple tamper scripts now implemented (issue #149), checks if the status code is a 404 before saying it's XSS vulnerable (issue #147) 2017-11-14 11:46:14 -06:00
ekultek
ef97ce7094 fix or an issue when an error occurs during the WhoIs lookup it will exit (issue #144) 2017-11-13 14:29:32 -06:00
ekultek
f2cad88415 initial push for issue #142, created a few WAF scripts to detect, will also save the fingerprint of the WAF script if the protection is declared to be generic 2017-11-12 19:13:00 -06:00
ekultek
11976b7018 minor updates, removed the dict args option in sqlmaphook and fixed some output coloring issues 2017-11-11 15:09:20 -06:00
ekultek
17c5771eac minor adjustments to the coding style, nothing that will cause any problems 2017-11-11 10:43:50 -06:00
ekultek
ed3d15c26f threading has been enabled on admin panel finder, be careful when going over 10 threads, you will be warned if you go over 2017-11-11 10:43:19 -06:00
ekultek
0046932f60 moved intel AMT bypass code to the deprecated folder and added it to the gitignore 2017-11-11 10:42:17 -06:00
ekultek
b35f8afe3b is now able to parse sqlmap configuration files, so if you have a saved conf file from sqlmap that you like to use, you can use it here with the --sqlmap-conf flag 2017-11-10 14:30:01 -06:00
ekultek
33ac2f961a same as admin panel, full batch functionaility has been implemented 2017-11-10 10:59:16 -06:00
ekultek
d5575b51ec has been deprecated, code will be moved to a deprecated folder inside of etc/deprecated by version 1.3 2017-11-10 10:58:45 -06:00
ekultek
c6c27f8b26 created full batch functionality for the admin panel finder, will display the default if batch is requested 2017-11-10 10:58:11 -06:00
ekultek
0151d26449 fixed some circular importing issues 2017-11-09 08:25:46 -06:00
ekultek
65744104f3 minor tweak to output colors, when run in batch will not prompt if you want to save the URL's, will just delete them 2017-11-08 20:02:51 -06:00
ekultek
769f4c5dc6 minor tweak to the output coloring 2017-11-08 20:01:43 -06:00
ekultek
42ee8e6a2b removed deprecated commented out code, minor tweak to the color output 2017-11-08 20:01:12 -06:00
ekultek
61d25ec6be minor tweaks to the output colors 2017-11-08 20:00:27 -06:00
ekultek
1445ac4a2e edited so that when something is clickjack vulnerable, you'll know it is 2017-11-08 19:59:48 -06:00
ekultek
68842f8d31 edited so that when something good happens you will know it's good, robots.txt will not prompt when running in batch mode 2017-11-08 19:58:44 -06:00
ekultek
46930fd19c patch for a reported issue (private) will now successfully search through the ports that may contain the AMT exploitable bypass 2017-11-07 12:22:53 -06:00
ekultek
dfb39c8eb3 added a timeout to the WhoIs lookup, this will prevent the API from stopping us 2017-11-07 11:56:51 -06:00
ekultek
b28fd3eac4 minor edits to most information, some updates to intel scans verbosity, comment edits to sqlmap 2017-11-06 12:25:53 -06:00
ekultek
9b623cf8e0 edited the file paths to reflect the new direcetories 2017-11-04 09:10:58 -05:00
ekultek
3bced94e70 minor update for a privately reported issue, where the HTML would display the site in a small scroll box, will not display as the full site 2017-11-02 09:24:23 -05:00
ekultek
bc335fa2d3 created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe 2017-11-01 21:48:58 -05:00
ekultek
fec7935d42 forgot to update the version number 2017-10-31 09:49:35 -05:00
ekultek
99575425f1 fixes an issue where if you run in verbose mode with whois lookup it will error out if certain information is not found (issue #128), it will now display the JSON data if you run in verbose mode 2017-10-31 09:47:49 -05:00
ekultek
6030774303 a patch for a reported issue (private) where if the found sitemap already exists, it would error out. will not just write as plain text and warn you that it probably already exists, also fixes an issue where found admin pages where not saved to a log file, and finally moved the sitemap.xml and robots.txt searches to a single function 2017-10-29 11:00:28 -05:00
ekultek
cf2cc59022 fix for the intel AMT exploit checker (messed it up without realizing it) 2017-10-28 08:26:47 -05:00
ekultek
46fc2372c9 created a sitemap parser, will check for a page sitemap and save it if it is found, otherwise will just continue processing 2017-10-28 08:25:58 -05:00
ekultek
6ba7231e82 splitting the shell commands via shlex will make the commands more secure, and able to avoid most shell injection instances 2017-10-25 16:32:27 -05:00
ekultek
bdcc28b412 you are now successfully able to launch the sqlmap API automatically using the --auto flag (issue #58) 2017-10-25 13:26:20 -05:00
ekultek
c7fedc0165 fixed the nmap issues, it will run now it will also install itself if it's not there. working on sqlmap autostart (still). moved the function to create sqlmap and nmap arguments to settings.py. created two new scripts (one is still a work in progess) 2017-10-24 01:22:21 -05:00
ekultek
9cc673a05b some minor changes to the WhoIs lookup, trying to prevent it from displaying empty lists and dicts 2017-10-23 22:25:37 -05:00
ekultek
977564ae62 minor update where running through a file or dork would not allow you to parse webcache or pull all URLs, also updated some whois lookup info 2017-10-21 16:59:43 -05:00
ekultek
e2287391c3 created a whois lookup search. Will either display it in human readable form with the correct flags, or save the found information to a log file 2017-10-21 10:16:16 -05:00
ekultek
1c24a4b4af some minor edits done to the prorgam, grammar fixes, moved some functions, edited some things, nothing to major or important 2017-10-17 13:33:40 -05:00
ekultek
a909ac6c74 updating some doc strings, will be updating them more in time. just wanted to go ahead and start on them for now 2017-10-16 10:03:35 -05:00
ekultek
21398eaf8a patches an issue where the target refuses the connection (issue #97), also creates a way to run against the IP addresses of the hostname instead 2017-10-14 07:47:50 -05:00
ekultek
37f1669596 update to the geckodriver versions, it will extract the one that is correct for your system 2017-10-13 13:39:09 -05:00
ekultek
24cdc14e9e minor patch to catch the geckodriver error, happens when firefox is not compatible (issue #94) 2017-10-13 13:15:46 -05:00