def __init__(self, script_path, arguments, output):
global VERSION
program_banner = (open(
FileUtils.build_path(script_path, "lib", "controller",
"banner.txt")).read().format(**VERSION))
self.directories = Queue()
self.script_path = script_path
self.exit = False
self.arguments = arguments
self.output = output
self.savePath = self.script_path
self.doneDirs = []
if arguments.raw_file:
# Overwrite python-requests default headers
default_headers = {
"User-Agent": None,
"Accept-Encoding": None,
"Accept": None,
}
_raw = Raw(arguments.raw_file, arguments.scheme)
self.urlList = [_raw.url()]
self.httpmethod = _raw.method()
self.data = _raw.data()
self.headers = {**default_headers, **_raw.headers()}
self.cookie = _raw.cookie()
self.useragent = _raw.user_agent()
else:
default_headers = {
"User-Agent":
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36",
"Accept-Language": "*",
"Accept-Encoding": "*",
"Keep-Alive": "300",
"Cache-Control": "max-age=0",
}
self.urlList = list(filter(None, dict.fromkeys(arguments.urlList)))
self.httpmethod = arguments.httpmethod.lower()
self.data = arguments.data
self.headers = {**default_headers, **arguments.headers}
self.cookie = arguments.cookie
self.useragent = arguments.useragent
self.recursion_depth = arguments.recursion_depth
if arguments.saveHome:
savePath = self.getSavePath()
if not FileUtils.exists(savePath):
FileUtils.create_directory(savePath)
if FileUtils.exists(savePath) and not FileUtils.is_dir(savePath):
self.output.error(
"Cannot use {} because it's a file. Should be a directory".
format(savePath))
exit(1)
if not FileUtils.can_write(savePath):
self.output.error(
"Directory {} is not writable".format(savePath))
exit(1)
logs = FileUtils.build_path(savePath, "logs")
if not FileUtils.exists(logs):
FileUtils.create_directory(logs)
reports = FileUtils.build_path(savePath, "reports")
if not FileUtils.exists(reports):
FileUtils.create_directory(reports)
self.savePath = savePath
self.reportsPath = FileUtils.build_path(self.savePath, "logs")
self.blacklists = self.getBlacklists()
self.includeStatusCodes = arguments.includeStatusCodes
self.excludeStatusCodes = arguments.excludeStatusCodes
self.excludeSizes = arguments.excludeSizes
self.excludeTexts = arguments.excludeTexts
self.excludeRegexps = arguments.excludeRegexps
self.excludeRedirects = arguments.excludeRedirects
self.recursive = arguments.recursive
self.minimumResponseSize = arguments.minimumResponseSize
self.maximumResponseSize = arguments.maximumResponseSize
self.scanSubdirs = arguments.scanSubdirs
self.excludeSubdirs = (arguments.excludeSubdirs
if arguments.excludeSubdirs else [])
self.dictionary = Dictionary(
arguments.wordlist, arguments.extensions, arguments.suffixes,
arguments.prefixes, arguments.lowercase, arguments.uppercase,
arguments.capitalization, arguments.forceExtensions,
arguments.excludeExtensions, arguments.noExtension,
arguments.onlySelected)
self.allJobs = len(self.scanSubdirs) if self.scanSubdirs else 1
self.currentJob = 0
self.errorLog = None
self.errorLogPath = None
self.threadsLock = Lock()
self.batch = False
self.batchSession = None
self.got429 = False
self.output.header(program_banner)
self.printConfig()
self.setupErrorLogs()
self.output.errorLogFile(self.errorLogPath)
if arguments.autoSave and len(self.urlList) > 1:
self.setupBatchReports()
self.output.newLine("\nAutoSave path: {0}".format(
self.batchDirectoryPath))
if arguments.useRandomAgents:
self.randomAgents = FileUtils.get_lines(
FileUtils.build_path(script_path, "db", "user-agents.txt"))
try:
for url in self.urlList:
try:
gc.collect()
self.reportManager = ReportManager()
self.currentUrl = url if url.endswith("/") else url + "/"
self.output.setTarget(self.currentUrl,
self.arguments.scheme)
self.ignore429 = False
try:
self.requester = Requester(
url,
cookie=self.cookie,
useragent=self.useragent,
maxPool=arguments.threadsCount,
maxRetries=arguments.maxRetries,
timeout=arguments.timeout,
ip=arguments.ip,
proxy=arguments.proxy,
proxylist=arguments.proxylist,
redirect=arguments.redirect,
requestByHostname=arguments.requestByHostname,
httpmethod=self.httpmethod,
data=self.data,
scheme=arguments.scheme,
)
for key, value in self.headers.items():
self.requester.setHeader(key, value)
self.requester.request("")
except RequestException as e:
self.output.error(e.args[0]["message"])
raise SkipTargetInterrupt
if arguments.useRandomAgents:
self.requester.setRandomAgents(self.randomAgents)
# Initialize directories Queue with start Path
self.basePath = self.requester.basePath
if self.scanSubdirs:
for subdir in self.scanSubdirs:
self.directories.put(subdir)
else:
self.directories.put("")
self.setupReports(self.requester)
matchCallbacks = [self.matchCallback]
notFoundCallbacks = [self.notFoundCallback]
errorCallbacks = [self.errorCallback, self.appendErrorLog]
self.fuzzer = Fuzzer(
self.requester,
self.dictionary,
testFailPath=arguments.testFailPath,
threads=arguments.threadsCount,
delay=arguments.delay,
matchCallbacks=matchCallbacks,
notFoundCallbacks=notFoundCallbacks,
errorCallbacks=errorCallbacks,
)
try:
self.prepare()
except RequestException as e:
self.output.error("Fatal error during scanning: " +
e.args[0]["message"])
raise SkipTargetInterrupt
except SkipTargetInterrupt:
continue
except KeyboardInterrupt:
self.output.error("\nCanceled by the user")
exit(0)
finally:
if not self.errorLog.closed:
self.errorLog.close()
self.reportManager.close()
self.output.warning("\nTask Completed")
def __init__(self, script_path, arguments, output):
global VERSION
PROGRAM_BANNER = open(
FileUtils.buildPath(script_path, "lib", "controller",
"banner.txt")).read().format(**VERSION)
self.script_path = script_path
self.exit = False
self.arguments = arguments
self.output = output
self.savePath = self.script_path
if self.arguments.saveHome:
savePath = self.getSavePath()
if not FileUtils.exists(savePath):
FileUtils.createDirectory(savePath)
if FileUtils.exists(savePath) and not FileUtils.isDir(savePath):
self.output.error(
'Cannot use {} because is a file. Should be a directory'.
format(savePath))
exit(1)
if not FileUtils.canWrite(savePath):
self.output.error(
'Directory {} is not writable'.format(savePath))
exit(1)
logs = FileUtils.buildPath(savePath, "logs")
if not FileUtils.exists(logs):
FileUtils.createDirectory(logs)
reports = FileUtils.buildPath(savePath, "reports")
if not FileUtils.exists(reports):
FileUtils.createDirectory(reports)
self.savePath = savePath
self.reportsPath = FileUtils.buildPath(self.savePath, "logs")
self.blacklists = self.getBlacklists()
self.fuzzer = None
self.excludeStatusCodes = self.arguments.excludeStatusCodes
self.recursive = self.arguments.recursive
self.directories = Queue()
self.excludeSubdirs = (arguments.excludeSubdirs
if arguments.excludeSubdirs is not None else [])
self.output.header(PROGRAM_BANNER)
self.dictionary = Dictionary(self.arguments.wordlist,
self.arguments.extensions,
self.arguments.lowercase,
self.arguments.forceExtensions)
self.printConfig()
self.errorLog = None
self.errorLogPath = None
self.errorLogLock = Lock()
self.batch = False
self.batchSession = None
self.setupErrorLogs()
self.output.newLine("\nError Log: {0}".format(self.errorLogPath))
if self.arguments.autoSave and len(self.arguments.urlList) > 1:
self.setupBatchReports()
self.output.newLine("\nAutoSave path: {0}".format(
self.batchDirectoryPath))
if self.arguments.useRandomAgents:
self.randomAgents = FileUtils.getLines(
FileUtils.buildPath(script_path, "db", "user-agents.txt"))
try:
for url in self.arguments.urlList:
try:
gc.collect()
self.reportManager = ReportManager()
self.currentUrl = url
self.output.target(self.currentUrl)
try:
self.requester = Requester(
url,
cookie=self.arguments.cookie,
useragent=self.arguments.useragent,
maxPool=self.arguments.threadsCount,
maxRetries=self.arguments.maxRetries,
timeout=self.arguments.timeout,
ip=self.arguments.ip,
proxy=self.arguments.proxy,
redirect=self.arguments.redirect)
self.requester.request("/")
except RequestException as e:
self.output.error(e.args[0]['message'])
raise SkipTargetInterrupt
if self.arguments.useRandomAgents:
self.requester.setRandomAgents(self.randomAgents)
for key, value in arguments.headers.items():
self.requester.setHeader(key, value)
# Initialize directories Queue with start Path
self.basePath = self.requester.basePath
if self.arguments.scanSubdirs is not None:
for subdir in self.arguments.scanSubdirs:
self.directories.put(subdir)
else:
self.directories.put('')
self.setupReports(self.requester)
matchCallbacks = [self.matchCallback]
notFoundCallbacks = [self.notFoundCallback]
errorCallbacks = [self.errorCallback, self.appendErrorLog]
self.fuzzer = Fuzzer(
self.requester,
self.dictionary,
testFailPath=self.arguments.testFailPath,
threads=self.arguments.threadsCount,
matchCallbacks=matchCallbacks,
notFoundCallbacks=notFoundCallbacks,
errorCallbacks=errorCallbacks)
self.wait()
except SkipTargetInterrupt:
continue
finally:
self.reportManager.save()
except KeyboardInterrupt:
self.output.error('\nCanceled by the user')
exit(0)
finally:
if not self.errorLog.closed:
self.errorLog.close()
self.reportManager.close()
self.output.warning('\nTask Completed')
def __init__(self, script_path, arguments, output):
global VERSION
program_banner = (open(
FileUtils.build_path(script_path, "lib", "controller",
"banner.txt")).read().format(**VERSION))
self.directories = Queue()
self.script_path = script_path
self.exit = False
self.arguments = arguments
self.output = output
self.doneDirs = []
if arguments.raw_file:
_raw = Raw(arguments.raw_file, arguments.scheme)
self.urlList = [_raw.url()]
self.httpmethod = _raw.method()
self.data = _raw.data()
self.headers = _raw.headers()
else:
default_headers = {
"User-Agent":
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36",
"Accept-Language": "*",
"Accept-Encoding": "*",
"Keep-Alive": "300",
"Cache-Control": "max-age=0",
}
self.urlList = list(filter(None, dict.fromkeys(arguments.urlList)))
self.httpmethod = arguments.httpmethod.lower()
self.data = arguments.data
self.headers = {**default_headers, **arguments.headers}
if arguments.cookie:
self.headers["Cookie"] = arguments.cookie
if arguments.cookie:
self.headers["User-Agent"] = arguments.useragent
self.recursion_depth = arguments.recursion_depth
if arguments.logsLocation and self.validatePath(
arguments.logsLocation):
self.logsPath = FileUtils.build_path(arguments.logsLocation)
else:
self.logsPath = FileUtils.build_path(self.script_path, "logs")
if not FileUtils.exists(self.logsPath):
FileUtils.create_directory(self.logsPath)
if arguments.outputLocation and self.validatePath(
arguments.outputLocation):
self.save_path = FileUtils.build_path(arguments.outputLocation)
else:
self.save_path = FileUtils.build_path(self.script_path, "reports")
if not FileUtils.exists(self.save_path):
FileUtils.create_directory(self.save_path)
self.blacklists = self.getBlacklists()
self.includeStatusCodes = arguments.includeStatusCodes
self.excludeStatusCodes = arguments.excludeStatusCodes
self.excludeSizes = arguments.excludeSizes
self.excludeTexts = arguments.excludeTexts
self.excludeRegexps = arguments.excludeRegexps
self.excludeRedirects = arguments.excludeRedirects
self.recursive = arguments.recursive
self.deep_recursive = arguments.deep_recursive
self.force_recursive = arguments.force_recursive
self.recursionStatusCodes = arguments.recursionStatusCodes
self.minimumResponseSize = arguments.minimumResponseSize
self.maximumResponseSize = arguments.maximumResponseSize
self.maxtime = arguments.maxtime
self.scanSubdirs = arguments.scanSubdirs
self.excludeSubdirs = (arguments.excludeSubdirs
if arguments.excludeSubdirs else [])
self.dictionary = Dictionary(
paths=arguments.wordlist,
extensions=arguments.extensions,
suffixes=arguments.suffixes,
prefixes=arguments.prefixes,
lowercase=arguments.lowercase,
uppercase=arguments.uppercase,
capitalization=arguments.capitalization,
forcedExtensions=arguments.forceExtensions,
excludeExtensions=arguments.excludeExtensions,
noExtension=arguments.noExtension,
onlySelected=arguments.onlySelected)
self.allJobs = len(self.scanSubdirs) if self.scanSubdirs else 1
self.currentJob = 0
self.startTime = time.time()
self.errorLog = None
self.errorLogPath = None
self.threadsLock = Lock()
self.batch = False
self.batchSession = None
self.output.header(program_banner)
self.printConfig()
if arguments.useRandomAgents:
self.randomAgents = FileUtils.get_lines(
FileUtils.build_path(script_path, "db", "user-agents.txt"))
if arguments.autosaveReport or arguments.outputFile:
if len(self.urlList) > 1:
self.setupBatchReports()
self.setupReports()
else:
self.reportManager = EmptyReportManager()
self.report = EmptyReport()
self.setupErrorLogs()
self.output.errorLogFile(self.errorLogPath)
try:
for url in self.urlList:
try:
gc.collect()
self.currentUrl = url if url.endswith("/") else url + "/"
self.output.setTarget(self.currentUrl,
self.arguments.scheme)
try:
self.requester = Requester(
url,
maxPool=arguments.threadsCount,
maxRetries=arguments.maxRetries,
timeout=arguments.timeout,
ip=arguments.ip,
proxy=arguments.proxy,
proxylist=arguments.proxylist,
redirect=arguments.redirect,
requestByHostname=arguments.requestByHostname,
httpmethod=self.httpmethod,
data=self.data,
scheme=arguments.scheme,
)
for key, value in self.headers.items():
self.requester.setHeader(key, value)
if arguments.auth:
self.requester.setAuth(arguments.auth_type,
arguments.auth)
self.requester.request("")
if arguments.autosaveReport or arguments.outputFile:
self.report = Report(self.requester.host,
self.requester.port,
self.requester.protocol,
self.requester.basePath)
except RequestException as e:
self.output.error(e.args[0]["message"])
raise SkipTargetInterrupt
if arguments.useRandomAgents:
self.requester.setRandomAgents(self.randomAgents)
# Initialize directories Queue with start Path
self.basePath = self.requester.basePath
self.status_skip = None
if self.scanSubdirs:
for subdir in self.scanSubdirs:
self.directories.put(subdir)
else:
self.directories.put("")
matchCallbacks = [self.matchCallback]
notFoundCallbacks = [self.notFoundCallback]
errorCallbacks = [self.errorCallback, self.appendErrorLog]
self.fuzzer = Fuzzer(
self.requester,
self.dictionary,
suffixes=arguments.suffixes,
prefixes=arguments.prefixes,
excludeContent=arguments.excludeContent,
threads=arguments.threadsCount,
delay=arguments.delay,
maxrate=arguments.maxrate,
matchCallbacks=matchCallbacks,
notFoundCallbacks=notFoundCallbacks,
errorCallbacks=errorCallbacks,
)
try:
self.prepare()
except RequestException as e:
self.output.error(e.args[0]["message"])
raise SkipTargetInterrupt
except SkipTargetInterrupt:
self.report.completed = True
continue
except KeyboardInterrupt:
self.output.error("\nCanceled by the user")
exit(0)
finally:
if not self.errorLog.closed:
self.errorLog.close()
self.output.warning("\nTask Completed")
def __init__(self, script_path, arguments, output):
global VERSION
program_banner = (open(
FileUtils.build_path(script_path, "lib", "controller",
"banner.txt")).read().format(**VERSION))
self.script_path = script_path
self.exit = False
self.arguments = arguments
self.output = output
self.savePath = self.script_path
self.doneDirs = []
self.recursive_level_max = self.arguments.recursive_level_max
if self.arguments.httpmethod.lower() not in [
"get", "head", "post", "put", "patch", "options", "delete",
"trace", "debug"
]:
self.output.error("Invalid HTTP method!")
exit(1)
self.httpmethod = self.arguments.httpmethod.lower()
if self.arguments.saveHome:
savePath = self.getSavePath()
if not FileUtils.exists(savePath):
FileUtils.create_directory(savePath)
if FileUtils.exists(savePath) and not FileUtils.is_dir(savePath):
self.output.error(
"Cannot use {} because is a file. Should be a directory".
format(savePath))
exit(1)
if not FileUtils.can_write(savePath):
self.output.error(
"Directory {} is not writable".format(savePath))
exit(1)
logs = FileUtils.build_path(savePath, "logs")
if not FileUtils.exists(logs):
FileUtils.create_directory(logs)
reports = FileUtils.build_path(savePath, "reports")
if not FileUtils.exists(reports):
FileUtils.create_directory(reports)
self.savePath = savePath
self.reportsPath = FileUtils.build_path(self.savePath, "logs")
self.blacklists = self.getBlacklists()
self.includeStatusCodes = self.arguments.includeStatusCodes
self.excludeStatusCodes = self.arguments.excludeStatusCodes
self.excludeTexts = self.arguments.excludeTexts
self.excludeRegexps = self.arguments.excludeRegexps
self.recursive = self.arguments.recursive
self.suppressEmpty = self.arguments.suppressEmpty
self.minimumResponseSize = self.arguments.minimumResponseSize
self.maximumResponseSize = self.arguments.maximumResponseSize
self.directories = Queue()
self.excludeSubdirs = (arguments.excludeSubdirs
if arguments.excludeSubdirs else [])
self.dictionary = Dictionary(
self.arguments.wordlist, self.arguments.extensions,
self.arguments.suffixes, self.arguments.prefixes,
self.arguments.lowercase, self.arguments.uppercase,
self.arguments.capitalization, self.arguments.forceExtensions,
self.arguments.noDotExtensions, self.arguments.excludeExtensions,
self.arguments.noExtension)
self.errorLog = None
self.errorLogPath = None
self.threadsLock = Lock()
self.batch = False
self.batchSession = None
self.currentJob = 0
self.allJobs = 0
self.output.header(program_banner)
self.printConfig()
self.setupErrorLogs()
self.output.errorLogFile(self.errorLogPath)
if self.arguments.autoSave and len(self.arguments.urlList) > 1:
self.setupBatchReports()
self.output.newLine("\nAutoSave path: {0}".format(
self.batchDirectoryPath))
if self.arguments.useRandomAgents:
self.randomAgents = FileUtils.get_lines(
FileUtils.build_path(script_path, "db", "user-agents.txt"))
try:
for url in list(dict.fromkeys(self.arguments.urlList)):
try:
gc.collect()
self.reportManager = ReportManager()
self.currentUrl = url
self.output.setTarget(self.currentUrl)
try:
self.requester = Requester(
url,
cookie=self.arguments.cookie,
useragent=self.arguments.useragent,
maxPool=self.arguments.threadsCount,
maxRetries=self.arguments.maxRetries,
delay=self.arguments.delay,
timeout=self.arguments.timeout,
ip=self.arguments.ip,
proxy=self.arguments.proxy,
proxylist=self.arguments.proxylist,
redirect=self.arguments.redirect,
requestByHostname=self.arguments.requestByHostname,
httpmethod=self.httpmethod,
data=self.arguments.data,
)
self.requester.request("")
except RequestException as e:
self.output.error(e.args[0]["message"])
raise SkipTargetInterrupt
if self.arguments.useRandomAgents:
self.requester.setRandomAgents(self.randomAgents)
for key, value in arguments.headers.items():
self.requester.setHeader(key, value)
# Initialize directories Queue with start Path
self.basePath = self.requester.basePath
if self.arguments.scanSubdirs:
for subdir in self.arguments.scanSubdirs:
self.directories.put(subdir)
self.allJobs += 1
else:
self.directories.put("")
self.allJobs += 1
self.setupReports(self.requester)
matchCallbacks = [self.matchCallback]
notFoundCallbacks = [self.notFoundCallback]
errorCallbacks = [self.errorCallback, self.appendErrorLog]
self.fuzzer = Fuzzer(
self.requester,
self.dictionary,
testFailPath=self.arguments.testFailPath,
threads=self.arguments.threadsCount,
matchCallbacks=matchCallbacks,
notFoundCallbacks=notFoundCallbacks,
errorCallbacks=errorCallbacks,
)
try:
self.wait()
except RequestException as e:
self.output.error(
"Fatal error during site scanning: " +
e.args[0]["message"])
raise SkipTargetInterrupt
except SkipTargetInterrupt:
continue
except KeyboardInterrupt:
self.output.error("\nCanceled by the user")
exit(0)
finally:
if not self.errorLog.closed:
self.errorLog.close()
self.reportManager.close()
self.output.warning("\nTask Completed")
