RubyGems - enchant - Versions diffs - 0.4.1 → 0.4.2 - Mend

enchant 0.4.1 → 0.4.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

data/ChangeLog CHANGED

@@ -1,3 +1,7 @@
+2010-07-02 Paolo Perego <thesp0nge@gmail.com>
+* lib/enchant.rb (modified_function): start coding subdomain fuzzing (--domain)
 -- 0.4.1 --
 2010-06-29 Paolo Perego <thesp0nge@gmail.com>

data/README.textile CHANGED

@@ -47,6 +47,14 @@ Or you can also use the wordlist you love most
 	bin/enchant -w mylist.txt www.some.org
 </pre>
+h3. Ping
+Starting from version 0.4.0 you can also ping the remote web server to see if it's alive (return code 200) or not.
+<pre>
+	bin/enchant -P http://www.some.org
+</pre>
 h2. Install
 <pre>sudo gem install enchant</pre>

data/VERSION CHANGED

	@@ -1 +1 @@
1	- 0.4.1
1	+ 0.4.2

data/bin/enchant CHANGED

@@ -12,7 +12,8 @@ opts = GetoptLong.new(
   [ '--ping', '-P', GetoptLong::NO_ARGUMENT],
   [ '--flood', '-f', GetoptLong::REQUIRED_ARGUMENT],
   [ '--wordlist', '-w', GetoptLong::REQUIRED_ARGUMENT ],
-  [ '--host', '-H', GetoptLong::REQUIRED_ARGUMENT],
+  [ '--host', '-H', GetoptLong::REQUIRED_ARGUMENT],
+  [ '--domain', '-d', GetoptLong::REQUIRED_ARGUMENT],
   [ '--port', '-p', GetoptLong::REQUIRED_ARGUMENT]
 )
@@ -21,6 +22,7 @@ ping = -1
 wordlist = 'basic.txt'
 host = nil
 port = nil
+domain = nil
 opts.each do |opt, arg|
   case opt
@@ -48,10 +50,12 @@ opts.each do |opt, arg|
           else
             wordlist = arg
           end
+        when '--domain'
+          domain = arg
       end
 end
-if host == nil && port == nil
+if host == nil && port == nil && domain == nil
   if ARGV.length != 1
     puts "Missing url argument (try --help)"
     exit 0
@@ -61,9 +65,14 @@ if host == nil && port == nil
   e = Enchant.new(url)
 else
-  e = Enchant.new
-  e.host = host
-  e.port = port
+  if domain == nil
+    e = Enchant.new
+    e.host = host
+    e.port = port
+  else
+    e = Enchant.new
+    e.domain = domain
+  end
 end
 puts e
@@ -94,7 +103,7 @@ if ping != -1
   puts "Pinging "+e.host+" onto port " + e.port.to_s
   start_time = Time.now
-  e.ping
+  e.get("/")
   if e.is_alive?
     puts e.host + " seems to be alive"
   else
@@ -104,6 +113,32 @@ if ping != -1
   puts "pinged in " + (Time.now - start_time).to_s + "s"
   exit 0
 end
+if domain != -1
+  if (! e.is_sane?)
+    puts 'Automatic url parsing failed, please consider providing such information by hand.'
+    exit 1
+  end
+  puts "scanning for " + e.domain + " for subdomains"
+  e.list(wordlist)
+  list = e.fuzz
+  if list == nil
+    puts "Enchant is giving up since no wordlist file is available"
+    exit -1
+  end
+  pbar = ProgressBar.new("subdomains", list.size)
+  found=Array.new
+  list.each {|x|
+    pbar.inc
+    if (e.ping?(x.chomp+"."+domain))
+      found.add(x+"."+domain)
+    end
+  }
+  puts found.length+" subdomains found."
+  exit 0
+end
 puts "Sending probe to #{url}"
 e.list(wordlist)
 list = e.fuzz()

data/enchant.gemspec CHANGED

@@ -1,15 +1,15 @@
 # Generated by jeweler
 # DO NOT EDIT THIS FILE DIRECTLY
-# Instead, edit Jeweler::Tasks in rakefile, and run the gemspec command
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
 # -*- encoding: utf-8 -*-
 Gem::Specification.new do |s|
   s.name = %q{enchant}
-  s.version = "0.4.1"
+  s.version = "0.4.2"
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Paolo Perego"]
-  s.date = %q{2010-06-29}
+  s.date = %q{2011-02-03}
   s.default_executable = %q{enchant}
   s.description = %q{Enchant is tool aimed to discover web application directory and pages by fuzzing the requests using a dictionary approach}
   s.email = %q{paolo@armoredcode.com}

data/lib/enchant.rb CHANGED

@@ -1,11 +1,14 @@
 require 'rubygems'
 require 'net/http'
 require 'uri'
+require 'ping'
+require 'Net/ping'
+include Net
 class Enchant
   attr_reader :server, :code
-  attr_accessor :host, :port
+  attr_accessor :host, :port, :domain
   VERSION = '0.4.0'
@@ -60,23 +63,27 @@ class Enchant
       puts #{$!}
       @code=-1
     end
+    @code
   end
   def is_alive?
     code.to_i==200
   end
-  def ping(*)
-    Net::HTTP.start(host, port) { |http|
-      response = http.head("/")
-      response.each { |key,val|
-        if "server" == key
-          @server=val
-        end
-      }
-      @code = response.code
-    }
+  def ping?(host)
+    # TCP pinging
+    if Ping.pingecho(host)
+      return true
+    end
+    #else
+    #  icmp = Net::Ping::ICMP.new(host)
+    #  if icmp.ping?
+    #    return true
+    #  else
+    #    return false
+    #  end
+    #end
+    false
   end
   def to_s()

metadata CHANGED

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: enchant
 version: !ruby/object:Gem::Version
-  hash: 13
+  hash: 11
   prerelease: false
   segments:
   - 0
   - 4
-  - 1
-  version: 0.4.1
+  - 2
+  version: 0.4.2
 platform: ruby
 authors:
 - Paolo Perego
@@ -15,7 +15,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2010-06-29 00:00:00 +02:00
+date: 2011-02-03 00:00:00 +01:00
 default_executable: enchant
 dependencies:
 - !ruby/object:Gem::Dependency