easywins 0.1.0

data/.gitignore

@@ -0,0 +1,22 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in easywins.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 Michael Henriksen
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,51 @@
+# Easywins
+
+![Easywins probing somewebsite.com](https://i.imgur.com/Qso3M12.png)
+
+Easywins is a simple security tool that can probe a web server for common
+paths that can be used for gathering information or for gaining a foothold
+on the system.
+
+The list of paths is taken from [@mubix's](https://twitter.com/mubix) crowd-sourced
+list of common *easy win* paths: https://github.com/pwnwiki/webappurls
+
+## Installation
+
+    $ gem install easywins
+
+## Usage
+
+    Usage: easywins [options] base_url
+
+    Probe a web server for common files and endpoints that are useful for gathering information or gaining a foothold.
+
+    v0.1.0
+
+    Options:
+        -h, --help                       Show command line help
+        -g, --get                        Use GET requests instead of HEAD (slower but stealthier)
+        -s, --sleep                      Sleep between 0 and 10 seconds before each request
+        -x, --spoof                      Spoof X-Forwarded-For header with random IP addresses
+            --timeout SECONDS            Request timeout in seconds
+                                         (default: 2.5)
+        -r, --retries RETRIES            Number of retries on failed requests
+                                         (default: 3)
+        -t, --threads THREADS            Number of threads to use
+                                         (default: 3)
+            --no-verify                  Don't do SSL verification
+            --no-redirect-check          Don't check if server redirects
+            --no-404-check               Don't check if server responds with 404
+            --no-color                   Don't colorize output
+            --version                    Show help/version info
+
+### Example:
+
+    $ easywins --sleep --spoof --threads 5 http://somewebsite.com
+
+## Contributing
+
+1. Fork it ( https://github.com/michenriksen/easywins/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,2 @@
+require "bundler/gem_tasks"
+

data/bin/easywins

@@ -0,0 +1,122 @@
+#!/usr/bin/env ruby
+# coding: utf-8
+
+require 'easywins'
+
+class App
+  include Methadone::Main
+  include Methadone::CLILogging
+
+  main do |base_url|
+    begin
+      Paint.mode = 0 if options.include?('no-color')
+
+      target = Easywins::Target.new(base_url, {
+        :spoof   => options.include?('spoof'),
+        :timeout => options[:timeout].to_f,
+        :retries => options[:retries],
+        :verify  => options['no-verify'].nil?
+      })
+
+      not_found_codes = [404]
+
+      print "\n [*] Checking to see if the server is alive... "
+      if target.alive?
+        print Paint["yes, good.\n", :green]
+      else
+        print Paint["nope, exiting.\n", :red]
+        exit!
+      end
+
+      if !options.include?('no-redirect-check')
+        print " [*] Checking to see if the server redirects... "
+        if target.redirects?
+          print Paint["it does.\n", :yellow]
+          puts Paint[" [*] Changing base URL to #{target.base_url}", :yellow]
+        else
+          print Paint["nope.\n", :green]
+        end
+      end
+
+      if !options.include?('no-404-check')
+        print " [*] Checking to see if the server responds with 404... "
+        not_found_probe = target.request("/#{SecureRandom.urlsafe_base64}")
+        if not_found_probe.code == 404
+          print Paint["yes, good.\n", :green]
+        else
+          if not_found_probe.code == 200
+            print Paint["#{not_found_probe.code} #{not_found_probe.message}\n", :red]
+            puts Paint[" [*] The server responds with 200 OK. Be prepared for tons of false-positives!", :red]
+          else
+            print Paint["#{not_found_probe.code} #{not_found_probe.message}.\n", :yellow]
+            puts Paint[" [*] Treating #{not_found_probe.code} responses as Not Found.", :yellow]
+            not_found_codes << not_found_probe.code
+          end
+        end
+      end
+
+      puts " [*] Checking the server for #{Easywins::PATHS.count} interesting paths...\n\n"
+
+      thread_pool  = Thread.pool(options[:threads].to_i)
+      column_width = Easywins::PATHS.max { |a, b| a.length <=> b.length }.length + target.base_url.length
+
+      Easywins::PATHS.shuffle.each do |path|
+        thread_pool.process do
+          sleep Random.rand(10) if options.include?('sleep')
+          begin
+            url    = "#{target.base_url}#{path}"
+            result = target.request(path, options.include?('get'))
+
+            if result.code == 200
+              puts Paint["     #{url.ljust(column_width)} #{result.code} #{result.message}", :green]
+            else
+              if !not_found_codes.include?(result.code)
+                puts Paint["     #{url.ljust(column_width)} #{result.code} #{result.message}", :yellow]
+              end
+            end
+          rescue => e
+            puts Paint["     #{url.ljust(column_width)} FAILED: #{e.class}", :red]
+          end
+        end
+      end
+
+      thread_pool.shutdown
+
+      puts Paint["\n [*] Done!\n", :green]
+
+    rescue Exception => e
+      if e.is_a?(OptionParser::ParseError) || e.is_a?(ArgumentError)
+        help_now!
+      elsif e.is_a?(Interrupt)
+        puts Paint["\n\n [*] Interrupted.\n", :yellow]
+      elsif e.is_a?(OpenSSL::SSL::SSLError)
+        puts Paint["\n\n [*] There's a problem with the server's SSL certificate. Use the --no-verify option if you know what you're doing.\n", :red]
+      else
+        puts Paint["\n\n [*] WARP CORE BREACH!", :red]
+        puts Paint["     #{e.class}: #{e.message}\n", :red]
+      end
+    end
+  end
+
+  options['threads']   = 3
+  options['timeout']   = Easywins::HttpClient::DEFAULT_TIMEOUT
+  options['retries']   = Easywins::HttpClient::DEFAULT_RETRIES
+
+  on('-g', '--get', "Use GET requests instead of HEAD (slower but stealthier)")
+  on('-s', '--sleep', "Sleep between 0 and 10 seconds before each request")
+  on('-x', '--spoof', "Spoof X-Forwarded-For header with random IP addresses")
+  on('-t', '--timeout SECONDS', "Request timeout in seconds")
+  on('-r', '--retries RETRIES', "Number of retries on failed requests")
+  on('-t THREADS', '--threads', "Number of threads to use")
+  on('--no-verify', "Don't do SSL verification")
+  on('--no-redirect-check', "Don't check if server redirects")
+  on('--no-404-check', "Don't check if server responds with 404")
+  on('--no-color', "Don't colorize output")
+
+  arg :base_url
+
+  description "Probe a web server for common files and endpoints that are useful for gathering information or gaining a foothold."
+  version Easywins::VERSION
+
+  go!
+end

data/easywins.gemspec

@@ -0,0 +1,28 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'easywins/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "easywins"
+  spec.version       = Easywins::VERSION
+  spec.authors       = ["Michael Henriksen"]
+  spec.email         = ["michenriksen@neomailbox.ch"]
+  spec.summary       = %q{Probe a web server for common files and endpoints that are useful for gathering information or gaining a foothold.}
+  spec.description   = %q{Probe a web server for common files and endpoints that are useful for gathering information or gaining a foothold.}
+  spec.homepage      = "https://github.com/michenriksen/easywins"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency 'httparty'
+  spec.add_dependency 'methadone'
+  spec.add_dependency 'paint'
+  spec.add_dependency 'thread'
+
+  spec.add_development_dependency "bundler", "~> 1.6"
+  spec.add_development_dependency "rake"
+end

data/lib/easywins.rb

@@ -0,0 +1,99 @@
+require 'optparse'
+require 'net/http'
+require 'httparty'
+require 'methadone'
+require 'paint'
+require 'thread/pool'
+
+require 'easywins/version'
+require 'easywins/http_client'
+require 'easywins/target'
+
+module Easywins
+  PATHS = [
+    '/.bzr/README',
+    '/.git/config',
+    '/.hg/requires',
+    '/.htaccess',
+    '/.htpasswd',
+    '/.svn/wc.db',
+    '/_layouts/groups.aspx',
+    '/_layouts/people.aspx',
+    '/access.log',
+    '/admin',
+    '/admin.nsf',
+    '/administration/index.php',
+    '/administrator/',
+    '/apc.php',
+    '/awstats/',
+    '/axis2/axis2-web/HappyAxis.jsp',
+    '/backup.tar.gz',
+    '/backup/',
+    '/backups/',
+    '/bb-admin',
+    '/c99.php',
+    '/cacti',
+    '/CFIDE/adminapi/administrator.cfc',
+    '/CFIDE/administrator/enter.cfm',
+    '/CFIDE/administrator/index.cfm',
+    '/CFIDE/scripts/ajax/FCKeditor/editor/filemanager/connectors/cfm/upload.cfm',
+    '/cgi-bin/cvsweb',
+    '/cgi-bin/php',
+    '/cgi-bin/php5',
+    '/CHANGELOG.txt',
+    '/console/',
+    '/crossdomain.xml',
+    '/data',
+    '/dev/',
+    '/elmah.axd',
+    '/error.log',
+    '/exchange/',
+    '/files',
+    '/ghost',
+    '/include/',
+    '/includes/',
+    '/index.php?-s',
+    '/index.php?url=admin',
+    '/info.php',
+    '/install',
+    '/INSTALL.txt',
+    '/install/upgrade.php',
+    '/jmx-console/',
+    '/login',
+    '/logon',
+    '/logs/',
+    '/manager',
+    '/manager/html',
+    '/manual/',
+    '/na_admin/ataglance.html',
+    '/owa',
+    '/pgmyadmin/',
+    '/phpinfo.php',
+    '/phpmyadmin/',
+    '/plesk',
+    '/pls/admin',
+    '/private',
+    '/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx',
+    '/README.txt',
+    '/robots.txt',
+    '/rockmongo/index.php',
+    '/server-status',
+    '/sitemap.xml',
+    '/sites/default/files/backup_migrate/',
+    '/temp',
+    '/test.php',
+    '/test/',
+    '/tmp',
+    '/trace.axd',
+    '/upload/',
+    '/uploads/',
+    '/user.php',
+    '/webalizer/',
+    '/webdav/',
+    '/webmin',
+    '/WorkArea/version.xml',
+    '/wp-admin/',
+    '/wsman',
+    '/xampp/'
+  ]
+end

data/lib/easywins/http_client.rb

@@ -0,0 +1,169 @@
+require 'ipaddr'
+
+module Easywins
+  class HttpClient
+    include HTTParty
+
+    follow_redirects false
+
+    class UnhandledError < StandardError; end
+
+    DEFAULT_TIMEOUT = 2.5 #seconds
+    DEFAULT_RETRIES = 3
+
+    HANDLED_EXCEPTIONS = [
+      SocketError,
+      Timeout::Error,
+      Errno::ETIMEDOUT,
+      Errno::ECONNRESET,
+      Errno::ECONNREFUSED,
+      Errno::ENETUNREACH,
+      Errno::EHOSTUNREACH,
+      EOFError
+    ]
+
+    USER_AGENTS = [
+      'Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/537.75.14',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.152 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko',
+      'Mozilla/5.0 (Windows NT 6.1; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.74.9 (KHTML, like Gecko) Version/7.0.2 Safari/537.74.9',
+      'Mozilla/5.0 (iPhone; CPU iPhone OS 7_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D167 Safari/9537.53',
+      'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 5.1; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36',
+      'Mozilla/5.0 (iPad; CPU OS 7_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D167 Safari/9537.53',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:27.0) Gecko/20100101 Firefox/27.0',
+      'Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.152 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36',
+      'Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0)',
+      'Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)',
+      'Mozilla/5.0 (X11; Linux x86_64; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.2; WOW64; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; rv:11.0) like Gecko',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:29.0) Gecko/20100101 Firefox/29.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36',
+      'Mozilla/5.0 (iPhone; CPU iPhone OS 7_1_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D201 Safari/9537.53',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/33.0.1750.152 Chrome/33.0.1750.152 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.152 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko',
+      'Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/6.1.3 Safari/537.75.14',
+      'Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:29.0) Gecko/20100101 Firefox/29.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8) AppleWebKit/534.59.10 (KHTML, like Gecko) Version/5.1.9 Safari/534.59.10',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:27.0) Gecko/20100101 Firefox/27.0',
+      'Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B554a Safari/9537.53',
+      'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.132 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:26.0) Gecko/20100101 Firefox/26.0',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.107 Safari/537.36',
+      'Mozilla/5.0 (iPad; CPU OS 7_1_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D201 Safari/9537.53',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/537.74.9 (KHTML, like Gecko) Version/6.1.2 Safari/537.74.9',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/6.1.3 Safari/537.75.14',
+      'Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; Touch; rv:11.0) like Gecko',
+      'Mozilla/5.0 (iPad; CPU OS 7_0_6 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B651 Safari/9537.53',
+      'Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.131 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0',
+      'Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20140319 Firefox/24.0 Iceweasel/24.4.0',
+      'Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)',
+      'Mozilla/5.0 (iPad; CPU OS 7_0_4 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B554a Safari/9537.53',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_5) AppleWebKit/536.30.1 (KHTML, like Gecko) Version/6.0.5 Safari/536.30.1',
+      'Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.116 Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.63 Safari/537.36',
+      'Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Firefox/24.0',
+      'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:29.0) Gecko/20100101 Firefox/29.0',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.152 Safari/537.36',
+      'Mozilla/5.0 (Linux; Android 4.4.2; Nexus 4 Build/KOT49H) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.114 Mobile Safari/537.36',
+      'Mozilla/5.0 (Windows NT 6.0; rv:28.0) Gecko/20100101 Firefox/28.0',
+      'Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; Trident/6.0)',
+      'Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)',
+      'Mozilla/5.0 (iPad; CPU OS 7_1 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) CriOS/33.0.1750.21 Mobile/11D167 Safari/9537.53',
+      'Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_6 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B651 Safari/9537.53',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.74.9 (KHTML, like Gecko) Version/6.1.2 Safari/537.74.9',
+      'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_1) AppleWebKit/537.73.11 (KHTML, like Gecko) Version/7.0.1 Safari/537.73.11'
+    ]
+
+    def initialize(config = {})
+      @config = {
+        :timeout          => DEFAULT_TIMEOUT,
+        :retries          => DEFAULT_RETRIES
+      }.merge(config)
+      default_timeout = @config[:timeout]
+    end
+
+    def do_head(path, params=nil, opt={})
+      do_request(:head, path, {:query => params}.merge(opt))
+    end
+
+    def do_get(path, params=nil, opt={})
+      do_request(:get, path, {:query => params}.merge(opt))
+    end
+
+    def do_post(path, params=nil, opt={})
+      do_request(:post, path, {:body => params}.merge(opt))
+    end
+
+    def do_put(path, params=nil, opt={})
+      do_request(:put, path, {:body => params}.merge(opt))
+    end
+
+    def do_delete(path, params=nil, opt={})
+      do_request(:delete, path, {:query => params}.merge(opt))
+    end
+
+  private
+
+    def do_request(method, path, options)
+      o = {
+        :headers => {
+          'User-Agent' => random_user_agent
+        }
+      }.merge(options)
+      o[:headers]['X-Forwarded-for'] = random_ip_address if @config[:spoof]
+      with_retries do
+        self.class.send(method, path, o)
+      end
+    end
+
+    def with_retries(&block)
+      tries ||= @config[:retries]
+      yield
+    rescue *HANDLED_EXCEPTIONS => ex
+      if (tries -= 1) > 0
+        sleep 0.2
+        retry
+      end
+      raise ex
+    end
+
+    def random_user_agent
+      USER_AGENTS.sample
+    end
+
+    def random_ip_address
+      ipv4 = IPAddr.new(rand(2**32), Socket::AF_INET).to_s
+    end
+  end
+end

data/lib/easywins/target.rb

@@ -0,0 +1,77 @@
+require 'securerandom'
+
+module Easywins
+  class Target
+
+    attr_reader :base_url
+
+    URL_REGEX      = /^(https?:\/\/)?([\da-z\.-]+)\.([a-z\.]{2,6})([\/\w \.-]*)*\/?\??$/
+    REDIRECT_CODES = [300, 301, 302, 303, 305]
+
+    class InvalidBaseUrlError < StandardError; end
+    class TooManyRedirectsError < StandardError; end
+
+    def initialize(base_url, options = {})
+      @base_url = validate_and_normalize_url!(base_url)
+      @options  = options
+    end
+
+    def request(path, use_get = false)
+      url = "#{@base_url}#{path}"
+      if use_get
+        http_client.do_get(url, {}, :verify => @options[:verify])
+      else
+        http_client.do_head(url, {}, :verify => @options[:verify])
+      end
+    end
+
+    def alive?
+      response = request('/', true)
+    rescue *HttpClient::HANDLED_EXCEPTIONS
+      false
+    end
+
+    def redirects?
+      final_url = validate_and_normalize_url!(follow_redirects!("#{@base_url}/"))
+      if @base_url != final_url
+        @base_url = final_url
+        true
+      else
+        false
+      end
+    end
+
+  private
+
+    def validate_and_normalize_url!(url)
+      url = "http://#{url}" unless url =~ /^https?:\/\//i
+      raise InvalidBaseUrlError.new("#{url} is an invalid URL") unless valid_url?(url)
+      normalized_url = url.dup
+      use_ssl = (normalized_url =~ /^https/) || (normalized_url =~ /:443\b/)
+      ends_with_slash = normalized_url =~ /\/$/
+
+      normalized_url.chop! if ends_with_slash
+      normalized_url.gsub!(/^https?:\/\//i, '')
+
+      "http#{'s' if use_ssl}://#{normalized_url}".downcase
+    end
+
+    def follow_redirects!(url, redirects = 5)
+      raise TooManyRedirectsError.new() if redirects.zero?
+      response = http_client.do_get(url, {}, :verify => @options[:verify])
+      if REDIRECT_CODES.include?(response.code)
+        follow_redirects!(response.headers['location'], redirects-1)
+      else
+        url
+      end
+    end
+
+    def valid_url?(url)
+      url =~ URL_REGEX
+    end
+
+    def http_client
+      @http_client ||= HttpClient.new(@options)
+    end
+  end
+end

data/lib/easywins/version.rb

@@ -0,0 +1,3 @@
+module Easywins
+  VERSION = "0.1.0"
+end

metadata

@@ -0,0 +1,156 @@
+--- !ruby/object:Gem::Specification
+name: easywins
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+  prerelease: 
+platform: ruby
+authors:
+- Michael Henriksen
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-05-10 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: httparty
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: methadone
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: paint
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: thread
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.6'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Probe a web server for common files and endpoints that are useful for
+  gathering information or gaining a foothold.
+email:
+- michenriksen@neomailbox.ch
+executables:
+- easywins
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/easywins
+- easywins.gemspec
+- lib/easywins.rb
+- lib/easywins/http_client.rb
+- lib/easywins/target.rb
+- lib/easywins/version.rb
+homepage: https://github.com/michenriksen/easywins
+licenses:
+- MIT
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.23
+signing_key: 
+specification_version: 3
+summary: Probe a web server for common files and endpoints that are useful for gathering
+  information or gaining a foothold.
+test_files: []