enchant 0.1.0 → 0.3.0

data/.gitignore

@@ -1 +1,4 @@
+.autotest
 doc/*
+pkg/
+

data/ChangeLog

@@ -1,3 +1,18 @@
+-- 0.3.0 -- 
+
+2010-06-25 Paolo Perego <thesp0nge@gmail.com>
+
+* lib/enchant.rb, bin/enchant (): adding -H, -p option to override URI parsing that checks TLD sanity
+
+2010-06-24 Paolo Perego <thesp0nge@gmail.com>
+* bin/enchant (none): adding -f, --flood to perform HTTP HEAD flooding requests
+
+-- 0.1.0 -- 
+2010-05-20 Paolo Perego <thesp0nge@gmail.com>
+
+* lib/enchant.rb (none): implemented list(), get() and ping() methods
+* bin/enchant (none): command line argument handling and first action... fuzzing against web app directories
+
 2010-05-18 Paolo Perego <thesp0nge@gmail.com>
 
 * lib/enchant.rb (none): first typos

data/{README.txt → README.textile}

@@ -1,35 +1,63 @@
-= enchant
+h1. enchant
 
-Enchant is is tool aimed to discover web application directory and pages by
-fuzzing the requests using a dictionary approach.
+h2. Introdution
 
-The purpose is for security guys to discover a web application exposed paths
-without knowing anything about the app they have to test.
+Enchant is is tool aimed to discover web application directory and pages by fuzzing the requests using a
+dictionary approach.
 
-Enchant doesn't perform any DoS attack, it plays just with HTTP GET observing
-the return code. Please be ethical and use this tool only against website
-you're allowed to stress test.
+The purpose is for security guys to discover a web application exposed paths without knowing anything about
+the app they have to test.
 
-== SYNOPSIS:
+Enchant doesn't perform any DoS attack (unless used as HTTP flooder, but please use it only for the systems
+you're allowed to), it plays just with HTTP GET observing the return code.
 
+Please be ethical and use this tool only against website you're allowed to stress test.
 
-== REQUIREMENTS:
+h2. Usage
 
+h3. HTTP Flooder
 
-== INSTALL:
+You can use enchant to flood you web server with HTTP GET / requests in order to test performance and/or stress stess your app.
+You can do this with the following
 
-'sudo gem install enchant'
+<pre>
+	bin/enchant -f 20 -H localhost -p 80
+</pre>
 
-== DEVELOPERS:
 
-After checking out the source, run:
+This one tells enchant to flood (<code>-f</code>) the host localhost (<code>-H</code>) onto port 80 (<code>-p</code>). The number of flooding requests is the -f parameter argument, that is required.
 
-  $ rake newb
+Of course you can also use
 
-This task will install any missing dependencies, run the tests/specs,
-and generate the RDoc.
+<pre>
+	bin/enchant -f 20 www.some.org
+</pre>
+
+h3. Fuzzer
+
+You can use enchant to discover web application folders just specifying the URL and using a default wordlist file called basic.txt (not yet provided)
+
+<pre>
+	bin/enchant www.some.org
+</pre>
+
+Or you can also use the wordlist you love most
+
+<pre>
+	bin/enchant -w mylist.txt www.some.org
+</pre>
+
+h2. Install
+
+<pre>sudo gem install enchant</pre>
+
+h2. Develop
+
+If you want to help in developing enchant, please fork the project, go on in hacking, submit me the patches
+and I'll merge into the main repo.
+
+h2. License
 
-== LICENSE:
 [The "BSD licence"]
 Copyright (c) 2010 Paolo Perego, paolo@armoredcode.com
 All rights reserved.

data/Rakefile

@@ -8,6 +8,7 @@ begin
     gemspec.homepage = "http://github.com/thesp0nge/enchant"
     gemspec.authors = ["Paolo Perego"]
     gemspec.add_dependency('ruby-progressbar')
+    gemspec.add_dependency('rainbow')
   end
   Jeweler::GemcutterTasks.new
 rescue LoadError

data/VERSION

@@ -1 +1 @@
-0.1.0
+0.3.0

data/bin/enchant

@@ -9,10 +9,17 @@ require 'rdoc/usage'
 opts = GetoptLong.new(
   [ '--help', '-h', GetoptLong::NO_ARGUMENT ],
   [ '--version', '-v', GetoptLong::NO_ARGUMENT ],
-  [ '--wordlist', '-w', GetoptLong::REQUIRED_ARGUMENT ]
+  [ '--flood', '-f', GetoptLong::REQUIRED_ARGUMENT],
+  [ '--wordlist', '-w', GetoptLong::REQUIRED_ARGUMENT ],
+  [ '--host', '-H', GetoptLong::REQUIRED_ARGUMENT], 
+  [ '--port', '-p', GetoptLong::REQUIRED_ARGUMENT]
 )
 
+flood = -1
 wordlist = 'basic.txt'
+host = nil
+port = nil
+
 opts.each do |opt, arg|
   case opt
         when '--help'
@@ -21,6 +28,16 @@ opts.each do |opt, arg|
         when '--version'
           puts Enchant.version
           exit 0
+        when '--flood'
+          flood = arg.to_i
+          if flood <= 0
+            puts 'can\'t flood negative requests'
+            exit 1
+          end
+        when '--host'
+          host = arg
+        when '--port'
+          port = arg.to_i
         when '--wordlist'
           if arg == ''
             wordlist = 'basic.txt'
@@ -28,18 +45,43 @@ opts.each do |opt, arg|
             wordlist = arg
           end
       end
-    end
-
-if ARGV.length != 1
-  puts "Missing url argument (try --help)"
-  exit 0
 end
 
-url = ARGV.shift
+if host == nil && port == nil
+  if ARGV.length != 1
+    puts "Missing url argument (try --help)"
+    exit 0
+  end
 
+  url = ARGV.shift
+  e = Enchant.new(url)
+
+else
+  e = Enchant.new
+  e.host = host
+  e.port = port
+end
 
-e = Enchant.new(url)
 puts e
+
+if flood != -1
+  puts "Flooding "+e.host+" with #{flood} requests"
+  if (! e.is_sane?)
+    puts 'Automatic url parsing failed, please consider providing such information by hand.'
+    exit 1
+  end
+  
+  pbar = ProgressBar.new("reqs", flood)
+  start_time = Time.now
+  (1..flood).each do |i|
+    pbar.inc
+    e.get('/')
+  end
+  puts
+  puts "flooed in " + (Time.now - start_time).to_s + "s"
+  exit 0
+end
+ 
 puts "Sending probe to #{url}"
 e.list(wordlist)
 list = e.fuzz()

data/enchant.gemspec

@@ -1,28 +1,28 @@
 # Generated by jeweler
 # DO NOT EDIT THIS FILE DIRECTLY
-# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# Instead, edit Jeweler::Tasks in rakefile, and run the gemspec command
 # -*- encoding: utf-8 -*-
 
 Gem::Specification.new do |s|
   s.name = %q{enchant}
-  s.version = "0.1.0"
+  s.version = "0.3.0"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Paolo Perego"]
-  s.date = %q{2010-05-19}
+  s.date = %q{2010-06-25}
   s.default_executable = %q{enchant}
   s.description = %q{Enchant is tool aimed to discover web application directory and pages by fuzzing the requests using a dictionary approach}
   s.email = %q{paolo@armoredcode.com}
   s.executables = ["enchant"]
   s.extra_rdoc_files = [
     "ChangeLog",
-     "README.txt"
+     "README.textile"
   ]
   s.files = [
     ".gitignore",
      "COPYING",
      "ChangeLog",
-     "README.txt",
+     "README.textile",
      "Rakefile",
      "VERSION",
      "bin/enchant",
@@ -45,11 +45,14 @@ Gem::Specification.new do |s|
 
     if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
       s.add_runtime_dependency(%q<ruby-progressbar>, [">= 0"])
+      s.add_runtime_dependency(%q<rainbow>, [">= 0"])
     else
       s.add_dependency(%q<ruby-progressbar>, [">= 0"])
+      s.add_dependency(%q<rainbow>, [">= 0"])
     end
   else
     s.add_dependency(%q<ruby-progressbar>, [">= 0"])
+    s.add_dependency(%q<rainbow>, [">= 0"])
   end
 end
 

data/lib/enchant.rb

@@ -4,14 +4,32 @@ require 'uri'
 
 
 class Enchant
-  attr_reader :host, :port, :server, :code
+  attr_reader :server, :code
+  attr_accessor :host, :port
   
-  VERSION = '0.1.0'
+  VERSION = '0.3.0'
   
-  def initialize(url)
-    tmp = URI.parse(url)
-    @host = tmp.host
-    @port = tmp.port
+  def initialize(*urls)
+    url = urls.pop || ""
+    
+    
+    if url != "" 
+      tmp = URI.parse(url)
+      @host = tmp.host
+      @port = tmp.port
+    
+      if @host == nil || @port == nil
+        @sane = nil
+      else 
+        @sane = 1
+      end
+    else
+      @sane = 1
+    end
+  end
+  
+  def is_sane?
+    @sane
   end
   
   def list(wordlist) 
@@ -52,6 +70,7 @@ class Enchant
           @server=val
         end 
       }
+
     }
   end
   
@@ -60,6 +79,7 @@ class Enchant
   end
   
   def self.version()
-    "Enchant v"+VERSION
+    @version = File.exist?('VERSION') ? File.read('VERSION') : VERSION
+    "Enchant v"+@version
   end
 end

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification 
 name: enchant
 version: !ruby/object:Gem::Version 
-  hash: 27
+  hash: 19
   prerelease: false
   segments: 
   - 0
-  - 1
+  - 3
   - 0
-  version: 0.1.0
+  version: 0.3.0
 platform: ruby
 authors: 
 - Paolo Perego
@@ -15,7 +15,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-05-19 00:00:00 +02:00
+date: 2010-06-25 00:00:00 +02:00
 default_executable: enchant
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -32,6 +32,20 @@ dependencies:
         version: "0"
   type: :runtime
   version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: rainbow
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id002
 description: Enchant is tool aimed to discover web application directory and pages by fuzzing the requests using a dictionary approach
 email: paolo@armoredcode.com
 executables: 
@@ -40,12 +54,12 @@ extensions: []
 
 extra_rdoc_files: 
 - ChangeLog
-- README.txt
+- README.textile
 files: 
 - .gitignore
 - COPYING
 - ChangeLog
-- README.txt
+- README.textile
 - Rakefile
 - VERSION
 - bin/enchant