m4dh4v45b1n 0.2.3 → 0.2.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/bin/fuzz-web-dir.rb +3 -0
- data/lib/m4dh4v45b1n/fuzz-web-dir.rb +9 -4
- data/lib/m4dh4v45b1n/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 0e5d58ee3c04f3b84349c34ae8d7d307f87eed26a77b7f0407074fe7a144849d
|
4
|
+
data.tar.gz: e945d8aaea8f21a740c0694759885f86b410862231b3c9257e3634e0bbb9f3a8
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: d31b7b60d8040acbb4e8cc72c9ed2898a11143351672334cf1ee52b819ec38ea983ef7552239231460cd64c6ff0487b7a94545b86f07c36383e278eeeff71e2d
|
7
|
+
data.tar.gz: fc8bdeacb2856ce4896f2d5f03d60c3e6a5cf9670ee49ee87f4f6d05839b018e08bc659111818cc56ed99592a4ed50a6b5f2d0907a12aa24144358f75210c211
|
data/bin/fuzz-web-dir.rb
CHANGED
@@ -23,6 +23,9 @@ Eg: fuzz-web-dir.rb -e php,txt --hs 303,404 https://example.com
|
|
23
23
|
optp.on('-e EXT', "Add extension.","Use comma for multiple value.", "(default:txt,php,html,xml") do |w|
|
24
24
|
init.ext = w.split(',')
|
25
25
|
end
|
26
|
+
optp.on('-E', "Dissable extension search.") do |e|
|
27
|
+
init.use_ext = false
|
28
|
+
end
|
26
29
|
optp.on('-p INT', Float, 'Pause the fuzz for N second.') do |p|
|
27
30
|
init.wait = p
|
28
31
|
end
|
@@ -14,7 +14,7 @@ def wordlist
|
|
14
14
|
end
|
15
15
|
FUZZ_WEB_DIR_DICT= wordlist
|
16
16
|
FUZZ_WEB_DIR_HIDE_CODE=['404']
|
17
|
-
FUZZ_WEB_DIR_EXT = ['php', 'txt', 'html', '
|
17
|
+
FUZZ_WEB_DIR_EXT = ['php', 'txt', 'html', 'db']
|
18
18
|
FUZZ_WEB_DIR_HEADER = '{}'
|
19
19
|
FUZZ_WEB_DIR_TIMEOUT = 3 # SECONDS
|
20
20
|
FUZZ_WEB_DIR_MAX_THREAD = 24
|
@@ -32,7 +32,7 @@ var.max_thread = 24
|
|
32
32
|
var.ext = ['php','txt']
|
33
33
|
=end
|
34
34
|
class Fuzz_web_dir
|
35
|
-
attr_accessor :url,:dict,:hide_code,:hide_line,:hide_char,:show_code,:show_line,:show_char,:timeout,:max_thread,:ext,:out,:wait,:proxy,:decoy,:last_decoy, :pfile,:check,:header,:follow
|
35
|
+
attr_accessor :url,:dict,:hide_code,:hide_line,:hide_char,:show_code,:show_line,:show_char,:timeout,:max_thread,:ext,:out,:wait,:proxy,:decoy,:last_decoy, :pfile,:check,:header,:follow,:use_ext
|
36
36
|
def initialize()
|
37
37
|
@dict = FUZZ_WEB_DIR_DICT
|
38
38
|
@hide_code = FUZZ_WEB_DIR_HIDE_CODE
|
@@ -49,6 +49,7 @@ class Fuzz_web_dir
|
|
49
49
|
@decoy = false
|
50
50
|
@check = true
|
51
51
|
@follow = false
|
52
|
+
@use_ext = true
|
52
53
|
@last_decoy = ''
|
53
54
|
@pfile = FUZZ_WEB_DIR_PROXY_FILE
|
54
55
|
end
|
@@ -179,8 +180,12 @@ class Fuzz_web_dir
|
|
179
180
|
if @url[-1] != '/'
|
180
181
|
@url += '/'
|
181
182
|
end
|
182
|
-
|
183
|
-
|
183
|
+
if @use_ext
|
184
|
+
@ext = @ext.map {|i| '.'+i }
|
185
|
+
@ext.append("")
|
186
|
+
else
|
187
|
+
@ext = [""]
|
188
|
+
end
|
184
189
|
@header = JSON::parse(@header)
|
185
190
|
if @decoy
|
186
191
|
@proxy = Pr0xy.new.get_proxies(@pfile, @check)
|
data/lib/m4dh4v45b1n/version.rb
CHANGED
@@ -1,2 +1,2 @@
|
|
1
1
|
# frozen_string_literal: true
|
2
|
-
VERSION = "0.2.
|
2
|
+
VERSION = "0.2.4"
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: m4dh4v45b1n
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.2.
|
4
|
+
version: 0.2.4
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Madhava-mng
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-07
|
11
|
+
date: 2021-08-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: sdcd
|