m4dh4v45b1n 0.2.2 → 0.2.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/bin/fuzz-web-dir.rb +11 -11
- data/lib/m4dh4v45b1n/fuzz-web-dir.rb +1 -1
- data/lib/m4dh4v45b1n/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 66c7fd9e0e8065d936f755e3d6b92d131a6049cc5c10a094afc29761de0fd4a3
|
4
|
+
data.tar.gz: 06a0575b54682afcfe4ec7b0f56d5731151eab62eab76eaff283fd90b0e5f284
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3c70ce3f1ee69c6a122166f1028642110181c26bd6f1ff7f51a8e247c060695695f6b203052d1e715af471f2706083ee3c6daae22dd69e75bbccd282f49ad6af
|
7
|
+
data.tar.gz: 9d6c29fff52dbf7b155b60876e1411f53a5b42fafe4cb958a26f622e73c13be5c1212614aad35027b734896cf80adb28d99736b53a9393ae95b8ca4b4acb0f4d
|
data/bin/fuzz-web-dir.rb
CHANGED
@@ -11,50 +11,50 @@ def main
|
|
11
11
|
des: Directory fuzzer. (#{VERSION})
|
12
12
|
recomended: ruby-3.x.x otherwise it won't work properly.
|
13
13
|
Eg: fuzz-web-dir.rb -e php,txt --hs 303,404 https://example.com
|
14
|
-
fuzz-web-dir.rb -u http://example.com/
|
14
|
+
fuzz-web-dir.rb -u http://example.com/ -w num.txt -H '{\"foo\":\"bar\"}'\n\n"
|
15
15
|
optp.program_name = "fuzz-web-dir"
|
16
|
-
optp.summary_width =
|
16
|
+
optp.summary_width = 12
|
17
17
|
optp.program_name = "fuzz-web-dir"
|
18
18
|
optp.version = VERSION
|
19
19
|
|
20
|
-
optp.on('-w FILE', "Use custom wordlist. (default:#{FUZZ_WEB_DIR_DICT})") do |w|
|
20
|
+
optp.on('-w FILE', "Use custom wordlist. ","(default:#{FUZZ_WEB_DIR_DICT})\n") do |w|
|
21
21
|
init.dict = w
|
22
22
|
end
|
23
|
-
optp.on('-e EXT', "Add extension.Use comma for multiple value. (default:txt,php,html,xml") do |w|
|
23
|
+
optp.on('-e EXT', "Add extension.","Use comma for multiple value.", "(default:txt,php,html,xml") do |w|
|
24
24
|
init.ext = w.split(',')
|
25
25
|
end
|
26
26
|
optp.on('-p INT', Float, 'Pause the fuzz for N second.') do |p|
|
27
27
|
init.wait = p
|
28
28
|
end
|
29
|
-
optp.on('-d' , "Enable decoy for evate the fire wall.
|
29
|
+
optp.on('-d' , "Enable decoy for evate the fire wall.","add #{FUZZ_WEB_DIR_PROXY_FILE},","for default decoy list. x.x.x.x:p format.") do |d|
|
30
30
|
init.decoy = true
|
31
31
|
end
|
32
32
|
optp.on('-D FILE' , "Use decoy file.") do |d|
|
33
33
|
init.decoy = true
|
34
34
|
init.pfile = d
|
35
35
|
end
|
36
|
-
optp.on('-n', 'Run decoy with out checking it.
|
36
|
+
optp.on('-n', 'Run decoy with out checking it.',"It may affect the result.\n") do
|
37
37
|
init.check = false
|
38
38
|
end
|
39
39
|
optp.on('-f', "Follow redirection") do |f|
|
40
40
|
init.follow = true
|
41
41
|
end
|
42
|
-
optp.on('-t INT', Integer, "Maximum concurrency. (default:#{FUZZ_WEB_DIR_MAX_THREAD})") do |t|
|
42
|
+
optp.on('-t INT', Integer, "Maximum concurrency. (default:#{FUZZ_WEB_DIR_MAX_THREAD})\n") do |t|
|
43
43
|
init.max_thread = t
|
44
44
|
end
|
45
|
-
optp.on('-T INT', Float, "Set time out for each try. (default:#{FUZZ_WEB_DIR_TIMEOUT}s)") do|t|
|
45
|
+
optp.on('-T INT', Float, "Set time out for each try. (default:#{FUZZ_WEB_DIR_TIMEOUT}s)\n") do|t|
|
46
46
|
init.timeout = t
|
47
47
|
end
|
48
|
-
optp.on('-u URL', "Target url or specify without -u flag
|
48
|
+
optp.on('-u URL', "Target url or specify without -u flag.\n")do|u|
|
49
49
|
init.url = u
|
50
50
|
end
|
51
51
|
optp.on('-o FILE', "Write output to the file.")do|f|
|
52
52
|
init.out = f
|
53
53
|
end
|
54
|
-
optp.on('-H HEAD', 'Add header in json format with in apostrophy. eg:\'{"key":29}\' .') do |h|
|
54
|
+
optp.on('-H HEAD', 'Add header in json format with in apostrophy.',' eg:\'{"key":29}\' .') do |h|
|
55
55
|
init.header = h
|
56
56
|
end
|
57
|
-
optp.on('-s INT', '--hs', "Hide status code. Use comma for multiple value. (default:404)") do |hc|
|
57
|
+
optp.on('-s INT', '--hs', "Hide status code. Use comma for multiple value. ","(default:404)") do |hc|
|
58
58
|
init.hide_code = hc.split(',')
|
59
59
|
end
|
60
60
|
optp.on('-c INT', '--hc', "Hide No.Of.Chars. Use comma for multiple value. ") do |hc|
|
@@ -107,7 +107,7 @@ class Fuzz_web_dir
|
|
107
107
|
end
|
108
108
|
if (@follow and !res_.header["Location"].nil?)
|
109
109
|
tmp = res_.header["Location"]
|
110
|
-
if
|
110
|
+
if URI.extract(tmp).length == 0
|
111
111
|
tmp = url_.sub(URI(url_).path, tmp)
|
112
112
|
end
|
113
113
|
show_result(tmp, try_)
|
data/lib/m4dh4v45b1n/version.rb
CHANGED
@@ -1,2 +1,2 @@
|
|
1
1
|
# frozen_string_literal: true
|
2
|
-
VERSION = "0.2.
|
2
|
+
VERSION = "0.2.3"
|