ekultek
|
0ae36e2489
|
fixes an issue where the options would not pass to nmap
|
2017-11-25 20:12:53 -06:00 |
|
ekultek
|
ddf46c6bbe
|
minor edits to some of the attacks, also created an interactive pause that you will be able to skip or exit from
|
2017-11-25 19:59:09 -06:00 |
|
ekultek
|
6f62049eb8
|
optimization for the time it takes to load the program, should be quicker now, created a search for public PGP keys will take your sites domain and search for any public PGP keys it can find, renamed some files to make more sense
|
2017-11-22 15:07:24 -06:00 |
|
ekultek
|
2f250a5a2d
|
update to the gist lookup search, multiple regexs will be tried in order to further try and discover some information
|
2017-11-21 12:39:51 -06:00 |
|
ekultek
|
52af437fe4
|
moved shutdown, startup, and prompt to lib.core.common due to how much they are used
|
2017-11-20 14:27:08 -06:00 |
|
ekultek
|
9eca1950cb
|
created constants of all the log filenames, adjusted files accordingly
|
2017-11-20 14:04:11 -06:00 |
|
ekultek
|
fd4c89ffb8
|
created a common.py file and drafted write_to_log_file into it, also created an HTTP_HEADER class that will be used instead of repeating myself, fixed everything accordingly
|
2017-11-20 11:43:27 -06:00 |
|
ekultek
|
d60ad9391b
|
bumped from three pages to five pages
|
2017-11-16 13:30:03 -06:00 |
|
ekultek
|
d75bb85955
|
created a Github Gist searching tool that will search 3 pages of Gists (usually around 500 links) and create a regex for the found URL, from there it will search through all the Gists and save any of them that have a match (issue #153)
|
2017-11-16 13:29:24 -06:00 |
|
ekultek
|
8b3a776af4
|
patch for an issue where the program would fail due to firefox and geckodriver not liking eachother (issue #154, issue #151), also patches an issue with the admin panel where it would write to a file no matter what happened (issue #152)
|
2017-11-16 07:34:09 -06:00 |
|
ekultek
|
55b1285809
|
multiple tamper scripts now implemented (issue #149), checks if the status code is a 404 before saying it's XSS vulnerable (issue #147)
|
2017-11-14 11:46:14 -06:00 |
|
ekultek
|
ef97ce7094
|
fix or an issue when an error occurs during the WhoIs lookup it will exit (issue #144)
|
2017-11-13 14:29:32 -06:00 |
|
ekultek
|
f2cad88415
|
initial push for issue #142, created a few WAF scripts to detect, will also save the fingerprint of the WAF script if the protection is declared to be generic
|
2017-11-12 19:13:00 -06:00 |
|
ekultek
|
11976b7018
|
minor updates, removed the dict args option in sqlmaphook and fixed some output coloring issues
|
2017-11-11 15:09:20 -06:00 |
|
ekultek
|
17c5771eac
|
minor adjustments to the coding style, nothing that will cause any problems
|
2017-11-11 10:43:50 -06:00 |
|
ekultek
|
ed3d15c26f
|
threading has been enabled on admin panel finder, be careful when going over 10 threads, you will be warned if you go over
|
2017-11-11 10:43:19 -06:00 |
|
ekultek
|
0046932f60
|
moved intel AMT bypass code to the deprecated folder and added it to the gitignore
|
2017-11-11 10:42:17 -06:00 |
|
ekultek
|
b35f8afe3b
|
is now able to parse sqlmap configuration files, so if you have a saved conf file from sqlmap that you like to use, you can use it here with the --sqlmap-conf flag
|
2017-11-10 14:30:01 -06:00 |
|
ekultek
|
33ac2f961a
|
same as admin panel, full batch functionaility has been implemented
|
2017-11-10 10:59:16 -06:00 |
|
ekultek
|
d5575b51ec
|
has been deprecated, code will be moved to a deprecated folder inside of etc/deprecated by version 1.3
|
2017-11-10 10:58:45 -06:00 |
|
ekultek
|
c6c27f8b26
|
created full batch functionality for the admin panel finder, will display the default if batch is requested
|
2017-11-10 10:58:11 -06:00 |
|
ekultek
|
0151d26449
|
fixed some circular importing issues
|
2017-11-09 08:25:46 -06:00 |
|
ekultek
|
65744104f3
|
minor tweak to output colors, when run in batch will not prompt if you want to save the URL's, will just delete them
|
2017-11-08 20:02:51 -06:00 |
|
ekultek
|
769f4c5dc6
|
minor tweak to the output coloring
|
2017-11-08 20:01:43 -06:00 |
|
ekultek
|
42ee8e6a2b
|
removed deprecated commented out code, minor tweak to the color output
|
2017-11-08 20:01:12 -06:00 |
|
ekultek
|
61d25ec6be
|
minor tweaks to the output colors
|
2017-11-08 20:00:27 -06:00 |
|
ekultek
|
1445ac4a2e
|
edited so that when something is clickjack vulnerable, you'll know it is
|
2017-11-08 19:59:48 -06:00 |
|
ekultek
|
68842f8d31
|
edited so that when something good happens you will know it's good, robots.txt will not prompt when running in batch mode
|
2017-11-08 19:58:44 -06:00 |
|
ekultek
|
46930fd19c
|
patch for a reported issue (private) will now successfully search through the ports that may contain the AMT exploitable bypass
|
2017-11-07 12:22:53 -06:00 |
|
ekultek
|
dfb39c8eb3
|
added a timeout to the WhoIs lookup, this will prevent the API from stopping us
|
2017-11-07 11:56:51 -06:00 |
|
ekultek
|
b28fd3eac4
|
minor edits to most information, some updates to intel scans verbosity, comment edits to sqlmap
|
2017-11-06 12:25:53 -06:00 |
|
ekultek
|
9b623cf8e0
|
edited the file paths to reflect the new direcetories
|
2017-11-04 09:10:58 -05:00 |
|
ekultek
|
3bced94e70
|
minor update for a privately reported issue, where the HTML would display the site in a small scroll box, will not display as the full site
|
2017-11-02 09:24:23 -05:00 |
|
ekultek
|
bc335fa2d3
|
created a clickjacking scanner that will test a page for an X-Frame-Options header, if the header is not there, then it will create a basic HTML page with that URL as an iframe
|
2017-11-01 21:48:58 -05:00 |
|
ekultek
|
fec7935d42
|
forgot to update the version number
|
2017-10-31 09:49:35 -05:00 |
|
ekultek
|
99575425f1
|
fixes an issue where if you run in verbose mode with whois lookup it will error out if certain information is not found (issue #128), it will now display the JSON data if you run in verbose mode
|
2017-10-31 09:47:49 -05:00 |
|
ekultek
|
6030774303
|
a patch for a reported issue (private) where if the found sitemap already exists, it would error out. will not just write as plain text and warn you that it probably already exists, also fixes an issue where found admin pages where not saved to a log file, and finally moved the sitemap.xml and robots.txt searches to a single function
|
2017-10-29 11:00:28 -05:00 |
|
ekultek
|
cf2cc59022
|
fix for the intel AMT exploit checker (messed it up without realizing it)
|
2017-10-28 08:26:47 -05:00 |
|
ekultek
|
46fc2372c9
|
created a sitemap parser, will check for a page sitemap and save it if it is found, otherwise will just continue processing
|
2017-10-28 08:25:58 -05:00 |
|
ekultek
|
6ba7231e82
|
splitting the shell commands via shlex will make the commands more secure, and able to avoid most shell injection instances
|
2017-10-25 16:32:27 -05:00 |
|
ekultek
|
bdcc28b412
|
you are now successfully able to launch the sqlmap API automatically using the --auto flag (issue #58)
|
2017-10-25 13:26:20 -05:00 |
|
ekultek
|
c7fedc0165
|
fixed the nmap issues, it will run now it will also install itself if it's not there. working on sqlmap autostart (still). moved the function to create sqlmap and nmap arguments to settings.py. created two new scripts (one is still a work in progess)
|
2017-10-24 01:22:21 -05:00 |
|
ekultek
|
9cc673a05b
|
some minor changes to the WhoIs lookup, trying to prevent it from displaying empty lists and dicts
|
2017-10-23 22:25:37 -05:00 |
|
ekultek
|
977564ae62
|
minor update where running through a file or dork would not allow you to parse webcache or pull all URLs, also updated some whois lookup info
|
2017-10-21 16:59:43 -05:00 |
|
ekultek
|
e2287391c3
|
created a whois lookup search. Will either display it in human readable form with the correct flags, or save the found information to a log file
|
2017-10-21 10:16:16 -05:00 |
|
ekultek
|
1c24a4b4af
|
some minor edits done to the prorgam, grammar fixes, moved some functions, edited some things, nothing to major or important
|
2017-10-17 13:33:40 -05:00 |
|
ekultek
|
a909ac6c74
|
updating some doc strings, will be updating them more in time. just wanted to go ahead and start on them for now
|
2017-10-16 10:03:35 -05:00 |
|
ekultek
|
21398eaf8a
|
patches an issue where the target refuses the connection (issue #97), also creates a way to run against the IP addresses of the hostname instead
|
2017-10-14 07:47:50 -05:00 |
|
ekultek
|
37f1669596
|
update to the geckodriver versions, it will extract the one that is correct for your system
|
2017-10-13 13:39:09 -05:00 |
|
ekultek
|
24cdc14e9e
|
minor patch to catch the geckodriver error, happens when firefox is not compatible (issue #94)
|
2017-10-13 13:15:46 -05:00 |
|