Commit graph

65 commits

Author SHA1 Message Date
ekultek
99575425f1 fixes an issue where if you run in verbose mode with whois lookup it will error out if certain information is not found (issue #128), it will now display the JSON data if you run in verbose mode 2017-10-31 09:47:49 -05:00
ekultek
6030774303 a patch for a reported issue (private) where if the found sitemap already exists, it would error out. will not just write as plain text and warn you that it probably already exists, also fixes an issue where found admin pages where not saved to a log file, and finally moved the sitemap.xml and robots.txt searches to a single function 2017-10-29 11:00:28 -05:00
ekultek
ecf067b6bb patch for unicode errors, it appears that selenium isn't formatted to handle unicode errors (as far as I can tell) so the dork that causes the error will be skipped (issue #125) 2017-10-27 17:14:08 -05:00
ekultek
6ba7231e82 splitting the shell commands via shlex will make the commands more secure, and able to avoid most shell injection instances 2017-10-25 16:32:27 -05:00
ekultek
bdcc28b412 you are now successfully able to launch the sqlmap API automatically using the --auto flag (issue #58) 2017-10-25 13:26:20 -05:00
ekultek
c7fedc0165 fixed the nmap issues, it will run now it will also install itself if it's not there. working on sqlmap autostart (still). moved the function to create sqlmap and nmap arguments to settings.py. created two new scripts (one is still a work in progess) 2017-10-24 01:22:21 -05:00
ekultek
f6888b59af moved the find running opts function to settings, cleaning out the zeus.py file 2017-10-23 22:26:16 -05:00
ekultek
242219ac8f moved the search engine configuration to the settings file 2017-10-23 13:41:43 -05:00
ekultek
d590ca22db patch for an issue where when a proxy is passed without the protocol it will create an issue (issue #118), also fixes an issue with the sqlmap arguments you no longer need to pass 'true' or 'false' it will do it automatically for you (issue #123) 2017-10-22 19:59:31 -05:00
ekultek
977564ae62 minor update where running through a file or dork would not allow you to parse webcache or pull all URLs, also updated some whois lookup info 2017-10-21 16:59:43 -05:00
ekultek
e2287391c3 created a whois lookup search. Will either display it in human readable form with the correct flags, or save the found information to a log file 2017-10-21 10:16:16 -05:00
ekultek
b2ff3da457 the auto fix for program install error was in the wrong spot (issue #115), moved to correct spot. should work fine now 2017-10-19 18:30:17 -05:00
ekultek
02a9f54544 created two new flags, one for parsing webcache, another for pulling all URLs. This will also produce more results per search. 2017-10-18 13:04:09 -05:00
ekultek
1c24a4b4af some minor edits done to the prorgam, grammar fixes, moved some functions, edited some things, nothing to major or important 2017-10-17 13:33:40 -05:00
ekultek
ea884a8138 some updates that include a script to re-install a dependency that tends to fail, and fix a proxy configuration issue 2017-10-17 09:05:10 -05:00
ekultek
a909ac6c74 updating some doc strings, will be updating them more in time. just wanted to go ahead and start on them for now 2017-10-16 10:03:35 -05:00
ekultek
21398eaf8a patches an issue where the target refuses the connection (issue #97), also creates a way to run against the IP addresses of the hostname instead 2017-10-14 07:47:50 -05:00
ekultek
24cdc14e9e minor patch to catch the geckodriver error, happens when firefox is not compatible (issue #94) 2017-10-13 13:15:46 -05:00
ekultek
6383abf69a patch for an issue where to many sessions would be open, will now auto clean the sessions (issue #92) 2017-10-13 10:06:57 -05:00
ekultek
b380c6e7c4 added a catch for the max retries error, along with how to bypass it, good luck 2017-10-12 18:55:29 -05:00
ekultek
a05c26e376 patch for an issue where you could not run the enumerate file flag (-f) 2017-10-12 18:05:19 -05:00
ekultek
c35fddb4ce just cleaning up the parameters a little bit, not as messy now 2017-10-12 11:59:59 -05:00
ekultek
c008f93d16 multi-threading is broken, working on a fix, for now DO NOT use it 2017-10-12 10:43:13 -05:00
ekultek
799b6baba0 created some new extenstions and a threading flag for the admin panel finder 2017-10-11 17:47:18 -05:00
ekultek
859ea19c44 minor update to the initial fix for issue #58, supressing help until that part is done 2017-10-11 14:39:01 -05:00
ekultek
e9f5b82d05 initial push for an issue (#58) where it would not auto start sqlmap, lots more work to be done so make sure you start the sqlmap server before the process 2017-10-11 14:36:34 -05:00
ekultek
92a5b44548 patch for using Bing as the search engine, Bing apparently was not implemented, sorry 2017-10-10 19:41:17 -05:00
ekultek
9d97a6765a created five new tamper scripts for XSS payloads 2017-10-10 17:59:01 -05:00
ekultek
80d9565585 files edited to reflect the move of the settings, errors, and tamper scripts folders 2017-10-10 17:01:13 -05:00
ekultek
f9577d0365 edited so that the file to be read from depends on the command you use instead of defaulting to URL_LOG 2017-10-08 08:21:17 -05:00
ekultek
4188c2c37c fixes issue where it tries to run the attacks no matter what happens (issue #54) 2017-10-08 07:47:01 -05:00
ekultek
3a3a1ed2a8 edited the README with a demo video 2017-10-07 10:19:33 -05:00
ekultek
4456a07bf1 created a function to get rid of some code duplication 2017-10-07 09:32:27 -05:00
ekultek
671e77b984 patch for issue #49, bo longer need to restart the sqlmap API each iteration 2017-10-07 08:09:16 -05:00
ekultek
97b620aef4 initial fix for issue #49, still more work to be done 2017-10-05 21:21:51 -05:00
ekultek
45ccafdb09 edited so that the user agent will always default to Zeus's user agent if none is provided 2017-10-03 14:52:48 -05:00
ekultek
94dac1c2bc added the ability to search multiple pages of Google (issue #4) 2017-10-03 11:19:16 -05:00
ekultek
0162ee134d added prompt for when an error occurs, 'y' will create an auto issue for you 2017-10-02 12:11:09 -05:00
ekultek
4cf72fc97b patch for issue #22, will not shutdown if the provided URL is not valid with an error message instead of throwing an exception 2017-10-01 08:06:03 -05:00
ekultek
ceca62c4b4 auto issue creation, also caught an error, apparently it's really hard to understand tHAT SQLMAP NEEDS TO BE STARTED IN ORDER TO WORK 2017-09-30 08:01:40 -05:00
ekultek
daca2ac1a2 patch for file logging issue (issue #10) 2017-09-29 17:46:54 -05:00
ekultek
f38ec5f65f adding support for python 3 (issue #7) if you find any issues with python3 please make an issue there 2017-09-29 14:28:53 -05:00
ekultek
3e4e37042a complete re-write of intel AMT bypass, proxy and user agent configuration added for issue #9 2017-09-29 13:58:46 -05:00
ekultek
9de772204e creating tamper scripts for the XSS payloads 2017-09-28 11:16:48 -05:00
ekultek
09d3bf1067 created a flag for you to pass a file to try attacks with, this way you can just attack the targets found after searching 2017-09-27 14:14:08 -05:00
ekultek
166e918223 patched the XSS scanner, should work better now 2017-09-27 10:35:39 -05:00
ekultek
90d3798a93 created an XSS scanner for issue #8 2017-09-26 12:56:35 -05:00
Thomas Perkins
ed4820b8ee Merge pull request #12 from cclauss/modernize-python2-code
Fix urllib imports for Python 3
2017-09-25 14:14:37 -05:00
cclauss
a84dd12e91 Remove unneeded changes 2017-09-25 21:10:58 +02:00
cclauss
b708f5627f Modernize Python 2 code to get ready for Python 3 2017-09-25 21:06:02 +02:00