PyPI - bbot - Versions diffs - 2.3.0.5370rc0__py3-none-any.whl → 2.3.0.5382rc0__py3-none-any.whl - Mend

bbot 2.3.0.5370rc0py3-none-any.whl → 2.3.0.5382rc0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of bbot might be problematic. Click here for more details.

Files changed (157) hide show

bbot/__init__.py +1 -1
bbot/cli.py +2 -6
bbot/core/config/files.py +0 -1
bbot/core/config/logger.py +1 -1
bbot/core/core.py +1 -1
bbot/core/event/base.py +13 -16
bbot/core/helpers/command.py +4 -4
bbot/core/helpers/depsinstaller/installer.py +5 -5
bbot/core/helpers/diff.py +7 -7
bbot/core/helpers/dns/brute.py +1 -1
bbot/core/helpers/dns/dns.py +1 -2
bbot/core/helpers/dns/engine.py +4 -6
bbot/core/helpers/dns/mock.py +0 -1
bbot/core/helpers/files.py +1 -1
bbot/core/helpers/helper.py +3 -1
bbot/core/helpers/interactsh.py +3 -3
bbot/core/helpers/libmagic.py +0 -1
bbot/core/helpers/misc.py +11 -11
bbot/core/helpers/process.py +0 -2
bbot/core/helpers/regex.py +1 -1
bbot/core/helpers/regexes.py +3 -3
bbot/core/helpers/validators.py +1 -2
bbot/core/helpers/web/client.py +1 -1
bbot/core/helpers/web/engine.py +1 -2
bbot/core/helpers/web/web.py +2 -3
bbot/core/helpers/wordcloud.py +5 -5
bbot/core/modules.py +21 -22
bbot/db/sql/models.py +0 -1
bbot/modules/azure_tenant.py +2 -2
bbot/modules/baddns.py +0 -2
bbot/modules/baddns_direct.py +0 -1
bbot/modules/base.py +16 -16
bbot/modules/bypass403.py +5 -5
bbot/modules/c99.py +1 -1
bbot/modules/columbus.py +1 -1
bbot/modules/deadly/ffuf.py +8 -8
bbot/modules/deadly/nuclei.py +1 -1
bbot/modules/deadly/vhost.py +3 -3
bbot/modules/dnsbimi.py +1 -1
bbot/modules/dnsdumpster.py +2 -2
bbot/modules/dockerhub.py +1 -1
bbot/modules/dotnetnuke.py +0 -2
bbot/modules/extractous.py +1 -1
bbot/modules/filedownload.py +1 -1
bbot/modules/generic_ssrf.py +3 -3
bbot/modules/github_workflows.py +1 -1
bbot/modules/gowitness.py +7 -7
bbot/modules/host_header.py +5 -5
bbot/modules/httpx.py +1 -1
bbot/modules/iis_shortnames.py +6 -6
bbot/modules/internal/cloudcheck.py +5 -5
bbot/modules/internal/dnsresolve.py +7 -7
bbot/modules/internal/excavate.py +23 -26
bbot/modules/internal/speculate.py +4 -4
bbot/modules/ipneighbor.py +1 -1
bbot/modules/jadx.py +1 -1
bbot/modules/newsletters.py +2 -2
bbot/modules/output/asset_inventory.py +6 -6
bbot/modules/output/base.py +1 -1
bbot/modules/output/csv.py +1 -1
bbot/modules/output/stdout.py +2 -2
bbot/modules/paramminer_headers.py +4 -7
bbot/modules/portscan.py +3 -3
bbot/modules/report/asn.py +11 -11
bbot/modules/robots.py +3 -3
bbot/modules/securitytxt.py +1 -1
bbot/modules/sitedossier.py +1 -1
bbot/modules/social.py +1 -1
bbot/modules/subdomainradar.py +1 -1
bbot/modules/telerik.py +7 -7
bbot/modules/templates/bucket.py +1 -1
bbot/modules/templates/github.py +1 -1
bbot/modules/templates/shodan.py +1 -1
bbot/modules/templates/subdomain_enum.py +1 -1
bbot/modules/templates/webhook.py +1 -1
bbot/modules/trufflehog.py +2 -2
bbot/modules/url_manipulation.py +3 -3
bbot/modules/urlscan.py +1 -1
bbot/modules/viewdns.py +1 -1
bbot/modules/wafw00f.py +1 -1
bbot/scanner/preset/args.py +10 -11
bbot/scanner/preset/environ.py +0 -1
bbot/scanner/preset/preset.py +9 -9
bbot/scanner/scanner.py +17 -17
bbot/scanner/target.py +1 -1
bbot/scripts/docs.py +1 -1
bbot/test/bbot_fixtures.py +1 -1
bbot/test/conftest.py +1 -1
bbot/test/run_tests.sh +4 -4
bbot/test/test_step_1/test_bbot_fastapi.py +2 -2
bbot/test/test_step_1/test_cli.py +56 -56
bbot/test/test_step_1/test_dns.py +15 -15
bbot/test/test_step_1/test_engine.py +17 -17
bbot/test/test_step_1/test_events.py +22 -22
bbot/test/test_step_1/test_helpers.py +26 -26
bbot/test/test_step_1/test_manager_scope_accuracy.py +306 -306
bbot/test/test_step_1/test_modules_basic.py +52 -53
bbot/test/test_step_1/test_presets.py +81 -81
bbot/test/test_step_1/test_regexes.py +5 -5
bbot/test/test_step_1/test_scan.py +4 -4
bbot/test/test_step_1/test_target.py +25 -25
bbot/test/test_step_1/test_web.py +5 -5
bbot/test/test_step_2/module_tests/base.py +6 -6
bbot/test/test_step_2/module_tests/test_module_anubisdb.py +1 -1
bbot/test/test_step_2/module_tests/test_module_asset_inventory.py +0 -1
bbot/test/test_step_2/module_tests/test_module_azure_realm.py +1 -1
bbot/test/test_step_2/module_tests/test_module_baddns.py +6 -6
bbot/test/test_step_2/module_tests/test_module_baddns_direct.py +2 -4
bbot/test/test_step_2/module_tests/test_module_bevigil.py +4 -4
bbot/test/test_step_2/module_tests/test_module_binaryedge.py +2 -2
bbot/test/test_step_2/module_tests/test_module_bucket_amazon.py +2 -2
bbot/test/test_step_2/module_tests/test_module_bucket_azure.py +1 -1
bbot/test/test_step_2/module_tests/test_module_builtwith.py +2 -2
bbot/test/test_step_2/module_tests/test_module_c99.py +9 -9
bbot/test/test_step_2/module_tests/test_module_columbus.py +1 -1
bbot/test/test_step_2/module_tests/test_module_credshed.py +2 -2
bbot/test/test_step_2/module_tests/test_module_dehashed.py +1 -1
bbot/test/test_step_2/module_tests/test_module_digitorus.py +1 -1
bbot/test/test_step_2/module_tests/test_module_dnsbrute.py +8 -9
bbot/test/test_step_2/module_tests/test_module_dnsbrute_mutations.py +0 -1
bbot/test/test_step_2/module_tests/test_module_dnscommonsrv.py +0 -1
bbot/test/test_step_2/module_tests/test_module_dnsdumpster.py +2 -2
bbot/test/test_step_2/module_tests/test_module_dotnetnuke.py +0 -2
bbot/test/test_step_2/module_tests/test_module_excavate.py +10 -30
bbot/test/test_step_2/module_tests/test_module_extractous.py +9 -9
bbot/test/test_step_2/module_tests/test_module_filedownload.py +14 -14
bbot/test/test_step_2/module_tests/test_module_git_clone.py +2 -2
bbot/test/test_step_2/module_tests/test_module_gowitness.py +4 -4
bbot/test/test_step_2/module_tests/test_module_host_header.py +1 -1
bbot/test/test_step_2/module_tests/test_module_http.py +4 -4
bbot/test/test_step_2/module_tests/test_module_httpx.py +7 -7
bbot/test/test_step_2/module_tests/test_module_leakix.py +2 -2
bbot/test/test_step_2/module_tests/test_module_myssl.py +1 -1
bbot/test/test_step_2/module_tests/test_module_neo4j.py +1 -1
bbot/test/test_step_2/module_tests/test_module_newsletters.py +6 -6
bbot/test/test_step_2/module_tests/test_module_ntlm.py +7 -7
bbot/test/test_step_2/module_tests/test_module_oauth.py +1 -1
bbot/test/test_step_2/module_tests/test_module_otx.py +1 -1
bbot/test/test_step_2/module_tests/test_module_paramminer_cookies.py +1 -2
bbot/test/test_step_2/module_tests/test_module_paramminer_getparams.py +0 -6
bbot/test/test_step_2/module_tests/test_module_paramminer_headers.py +2 -9
bbot/test/test_step_2/module_tests/test_module_portscan.py +3 -4
bbot/test/test_step_2/module_tests/test_module_postgres.py +1 -1
bbot/test/test_step_2/module_tests/test_module_rapiddns.py +9 -9
bbot/test/test_step_2/module_tests/test_module_sitedossier.py +2 -2
bbot/test/test_step_2/module_tests/test_module_smuggler.py +1 -1
bbot/test/test_step_2/module_tests/test_module_speculate.py +2 -6
bbot/test/test_step_2/module_tests/test_module_splunk.py +4 -4
bbot/test/test_step_2/module_tests/test_module_subdomaincenter.py +1 -1
bbot/test/test_step_2/module_tests/test_module_subdomains.py +1 -1
bbot/test/test_step_2/module_tests/test_module_trufflehog.py +2 -2
bbot/test/test_step_2/module_tests/test_module_wayback.py +1 -1
{bbot-2.3.0.5370rc0.dist-info → bbot-2.3.0.5382rc0.dist-info}/METADATA +2 -2
{bbot-2.3.0.5370rc0.dist-info → bbot-2.3.0.5382rc0.dist-info}/RECORD +157 -157
{bbot-2.3.0.5370rc0.dist-info → bbot-2.3.0.5382rc0.dist-info}/LICENSE +0 -0
{bbot-2.3.0.5370rc0.dist-info → bbot-2.3.0.5382rc0.dist-info}/WHEEL +0 -0
{bbot-2.3.0.5370rc0.dist-info → bbot-2.3.0.5382rc0.dist-info}/entry_points.txt +0 -0

bbot/core/helpers/wordcloud.py CHANGED Viewed

@@ -111,7 +111,7 @@ class WordCloud(dict):
         results = set()
         for word in words:
             h = hash(word)
-            if not h in results:
+            if h not in results:
                 results.add(h)
                 yield (word,)
         if numbers > 0:
@@ -119,7 +119,7 @@ class WordCloud(dict):
                 for word in words:
                     for number_mutation in self.get_number_mutations(word, n=numbers, padding=number_padding):
                         h = hash(number_mutation)
-                        if not h in results:
+                        if h not in results:
                             results.add(h)
                             yield (number_mutation,)
         for word in words:
@@ -322,7 +322,7 @@ class WordCloud(dict):
     @property
     def default_filename(self):
-        return self.parent_helper.preset.scan.home / f"wordcloud.tsv"
+        return self.parent_helper.preset.scan.home / "wordcloud.tsv"
     def save(self, filename=None, limit=None):
         """
@@ -357,7 +357,7 @@ class WordCloud(dict):
                 log.debug(f"Saved word cloud ({len(self):,} words) to {filename}")
                 return True, filename
             else:
-                log.debug(f"No words to save")
+                log.debug("No words to save")
         except Exception as e:
             import traceback
@@ -421,7 +421,7 @@ class Mutator(dict):
     def mutate(self, word, max_mutations=None, mutations=None):
         if mutations is None:
             mutations = self.top_mutations(max_mutations)
-        for mutation, count in mutations.items():
+        for mutation in mutations.keys():
             ret = []
             for s in mutation:
                 if s is not None:

bbot/core/modules.py CHANGED Viewed

@@ -153,7 +153,7 @@ class ModuleLoader:
                 else:
                     log.debug(f"Preloading {module_name} from disk")
                     if module_dir.name == "modules":
-                        namespace = f"bbot.modules"
+                        namespace = "bbot.modules"
                     else:
                         namespace = f"bbot.modules.{module_dir.name}"
                     try:
@@ -235,7 +235,7 @@ class ModuleLoader:
         return self.__preloaded
     def get_recursive_dirs(self, *dirs):
-        dirs = set(Path(d).resolve() for d in dirs)
+        dirs = {Path(d).resolve() for d in dirs}
         for d in list(dirs):
             if not d.is_dir():
                 continue
@@ -337,74 +337,73 @@ class ModuleLoader:
             # look for classes
             if type(root_element) == ast.ClassDef:
                 for class_attr in root_element.body:
                     # class attributes that are dictionaries
                     if type(class_attr) == ast.Assign and type(class_attr.value) == ast.Dict:
                         # module options
-                        if any([target.id == "options" for target in class_attr.targets]):
+                        if any(target.id == "options" for target in class_attr.targets):
                             config.update(ast.literal_eval(class_attr.value))
                         # module options
-                        elif any([target.id == "options_desc" for target in class_attr.targets]):
+                        elif any(target.id == "options_desc" for target in class_attr.targets):
                             options_desc.update(ast.literal_eval(class_attr.value))
                         # module metadata
-                        elif any([target.id == "meta" for target in class_attr.targets]):
+                        elif any(target.id == "meta" for target in class_attr.targets):
                             meta = ast.literal_eval(class_attr.value)
                     # class attributes that are lists
                     if type(class_attr) == ast.Assign and type(class_attr.value) == ast.List:
                         # flags
-                        if any([target.id == "flags" for target in class_attr.targets]):
+                        if any(target.id == "flags" for target in class_attr.targets):
                             for flag in class_attr.value.elts:
                                 if type(flag.value) == str:
                                     flags.add(flag.value)
                         # watched events
-                        elif any([target.id == "watched_events" for target in class_attr.targets]):
+                        elif any(target.id == "watched_events" for target in class_attr.targets):
                             for event_type in class_attr.value.elts:
                                 if type(event_type.value) == str:
                                     watched_events.add(event_type.value)
                         # produced events
-                        elif any([target.id == "produced_events" for target in class_attr.targets]):
+                        elif any(target.id == "produced_events" for target in class_attr.targets):
                             for event_type in class_attr.value.elts:
                                 if type(event_type.value) == str:
                                     produced_events.add(event_type.value)
                         # bbot module dependencies
-                        elif any([target.id == "deps_modules" for target in class_attr.targets]):
+                        elif any(target.id == "deps_modules" for target in class_attr.targets):
                             for dep_module in class_attr.value.elts:
                                 if type(dep_module.value) == str:
                                     deps_modules.add(dep_module.value)
                         # python dependencies
-                        elif any([target.id == "deps_pip" for target in class_attr.targets]):
+                        elif any(target.id == "deps_pip" for target in class_attr.targets):
                             for dep_pip in class_attr.value.elts:
                                 if type(dep_pip.value) == str:
                                     deps_pip.append(dep_pip.value)
-                        elif any([target.id == "deps_pip_constraints" for target in class_attr.targets]):
+                        elif any(target.id == "deps_pip_constraints" for target in class_attr.targets):
                             for dep_pip in class_attr.value.elts:
                                 if type(dep_pip.value) == str:
                                     deps_pip_constraints.append(dep_pip.value)
                         # apt dependencies
-                        elif any([target.id == "deps_apt" for target in class_attr.targets]):
+                        elif any(target.id == "deps_apt" for target in class_attr.targets):
                             for dep_apt in class_attr.value.elts:
                                 if type(dep_apt.value) == str:
                                     deps_apt.append(dep_apt.value)
                         # bash dependencies
-                        elif any([target.id == "deps_shell" for target in class_attr.targets]):
+                        elif any(target.id == "deps_shell" for target in class_attr.targets):
                             for dep_shell in class_attr.value.elts:
                                 deps_shell.append(ast.literal_eval(dep_shell))
                         # ansible playbook
-                        elif any([target.id == "deps_ansible" for target in class_attr.targets]):
+                        elif any(target.id == "deps_ansible" for target in class_attr.targets):
                             ansible_tasks = ast.literal_eval(class_attr.value)
                         # shared/common module dependencies
-                        elif any([target.id == "deps_common" for target in class_attr.targets]):
+                        elif any(target.id == "deps_common" for target in class_attr.targets):
                             for dep_common in class_attr.value.elts:
                                 if type(dep_common.value) == str:
                                     deps_common.append(dep_common.value)
         for task in ansible_tasks:
-            if not "become" in task:
+            if "become" not in task:
                 task["become"] = False
             # don't sudo brew
-            elif os_platform() == "darwin" and ("package" in task and task.get("become", False) == True):
+            elif os_platform() == "darwin" and ("package" in task and task.get("become", False) is True):
                 task["become"] = False
         preloaded_data = {
@@ -437,8 +436,8 @@ class ModuleLoader:
                     f'Error while preloading module "{module_file}": No shared dependency named "{dep_common}" (choices: {common_choices})'
                 )
         for ansible_task in ansible_task_list:
-            if any(x == True for x in search_dict_by_key("become", ansible_task)) or any(
-                x == True for x in search_dict_by_key("ansible_become", ansible_tasks)
+            if any(x is True for x in search_dict_by_key("become", ansible_task)) or any(
+                x is True for x in search_dict_by_key("ansible_become", ansible_tasks)
             ):
                 preloaded_data["sudo"] = True
         return preloaded_data
@@ -541,7 +540,7 @@ class ModuleLoader:
                     with suppress(KeyError):
                         choices.remove(modname)
                     if event_type not in resolve_choices:
-                        resolve_choices[event_type] = dict()
+                        resolve_choices[event_type] = {}
                     deps = resolve_choices[event_type]
                     self.add_or_create(deps, "required_by", modname)
                     for c in choices:
@@ -640,7 +639,7 @@ class ModuleLoader:
     def modules_options_table(self, modules=None, mod_type=None):
         table = []
         header = ["Config Option", "Type", "Description", "Default"]
-        for module_name, module_options in self.modules_options(modules, mod_type).items():
+        for module_options in self.modules_options(modules, mod_type).values():
             table += module_options
         return make_table(table, header)

bbot/db/sql/models.py CHANGED Viewed

@@ -69,7 +69,6 @@ class BBOTBaseModel(SQLModel):
 class Event(BBOTBaseModel, table=True):
     def __init__(self, *args, **kwargs):
         super().__init__(*args, **kwargs)
         data = self._get_data(self.data, self.type)

bbot/modules/azure_tenant.py CHANGED Viewed

@@ -102,7 +102,7 @@ class azure_tenant(BaseModule):
         status_code = getattr(r, "status_code", 0)
         if status_code not in (200, 421):
             self.verbose(f'Error retrieving azure_tenant domains for "{domain}" (status code: {status_code})')
-            return set(), dict()
+            return set(), {}
         found_domains = list(set(await self.helpers.re.findall(self.d_xml_regex, r.text)))
         domains = set()
@@ -116,7 +116,7 @@ class azure_tenant(BaseModule):
             self.scan.word_cloud.absorb_word(d)
         r = await openid_task
-        openid_config = dict()
+        openid_config = {}
         with suppress(Exception):
             openid_config = r.json()

bbot/modules/baddns.py CHANGED Viewed

@@ -55,7 +55,6 @@ class baddns(BaseModule):
         return True
     async def handle_event(self, event):
         tasks = []
         for ModuleClass in self.select_modules():
             kwargs = {
@@ -75,7 +74,6 @@ class baddns(BaseModule):
             tasks.append((module_instance, task))
         async for completed_task in self.helpers.as_completed([task for _, task in tasks]):
             module_instance = next((m for m, t in tasks if t == completed_task), None)
             try:
                 task_result = await completed_task

bbot/modules/baddns_direct.py CHANGED Viewed

@@ -51,7 +51,6 @@ class baddns_direct(BaseModule):
         CNAME_direct_instance = CNAME_direct_module(event.host, **kwargs)
         if await CNAME_direct_instance.dispatch():
             results = CNAME_direct_instance.analyze()
             if results and len(results) > 0:
                 for r in results:

bbot/modules/base.py CHANGED Viewed

@@ -311,7 +311,7 @@ class BaseModule:
         if self.auth_secret:
             try:
                 await self.ping()
-                self.hugesuccess(f"API is ready")
+                self.hugesuccess("API is ready")
                 return True, ""
             except Exception as e:
                 self.trace(traceback.format_exc())
@@ -332,10 +332,10 @@ class BaseModule:
     def cycle_api_key(self):
         if len(self._api_keys) > 1:
-            self.verbose(f"Cycling API key")
+            self.verbose("Cycling API key")
             self._api_keys.insert(0, self._api_keys.pop())
         else:
-            self.debug(f"No extra API keys to cycle")
+            self.debug("No extra API keys to cycle")
     @property
     def api_retries(self):
@@ -669,7 +669,7 @@ class BaseModule:
                             if self.incoming_event_queue is not False:
                                 event = await self.incoming_event_queue.get()
                             else:
-                                self.debug(f"Event queue is in bad state")
+                                self.debug("Event queue is in bad state")
                                 break
                         except asyncio.queues.QueueEmpty:
                             continue
@@ -700,7 +700,7 @@ class BaseModule:
                 else:
                     self.error(f"Critical failure in module {self.name}: {e}")
                     self.error(traceback.format_exc())
-        self.log.trace(f"Worker stopped")
+        self.log.trace("Worker stopped")
     @property
     def max_scope_distance(self):
@@ -743,7 +743,7 @@ class BaseModule:
         if event.type in ("FINISHED",):
             return True, "its type is FINISHED"
         if self.errored:
-            return False, f"module is in error state"
+            return False, "module is in error state"
         # exclude non-watched types
         if not any(t in self.get_watched_events() for t in ("*", event.type)):
             return False, "its type is not in watched_events"
@@ -770,7 +770,7 @@ class BaseModule:
             # check duplicates
             is_incoming_duplicate, reason = self.is_incoming_duplicate(event, add=True)
             if is_incoming_duplicate and not self.accept_dupes:
-                return False, f"module has already seen it" + (f" ({reason})" if reason else "")
+                return False, "module has already seen it" + (f" ({reason})" if reason else "")
         return acceptable, reason
@@ -863,7 +863,7 @@ class BaseModule:
         """
         async with self._task_counter.count("queue_event()", _log=False):
             if self.incoming_event_queue is False:
-                self.debug(f"Not in an acceptable state to queue incoming event")
+                self.debug("Not in an acceptable state to queue incoming event")
                 return
             acceptable, reason = self._event_precheck(event)
             if not acceptable:
@@ -879,7 +879,7 @@ class BaseModule:
                 if event.type != "FINISHED":
                     self.scan._new_activity = True
             except AttributeError:
-                self.debug(f"Not in an acceptable state to queue incoming event")
+                self.debug("Not in an acceptable state to queue incoming event")
     async def queue_outgoing_event(self, event, **kwargs):
         """
@@ -904,7 +904,7 @@ class BaseModule:
         try:
             await self.outgoing_event_queue.put((event, kwargs))
         except AttributeError:
-            self.debug(f"Not in an acceptable state to queue outgoing event")
+            self.debug("Not in an acceptable state to queue outgoing event")
     def set_error_state(self, message=None, clear_outgoing_queue=False, critical=False):
         """
@@ -939,7 +939,7 @@ class BaseModule:
             self.errored = True
             # clear incoming queue
             if self.incoming_event_queue is not False:
-                self.debug(f"Emptying event_queue")
+                self.debug("Emptying event_queue")
                 with suppress(asyncio.queues.QueueEmpty):
                     while 1:
                         self.incoming_event_queue.get_nowait()
@@ -1126,7 +1126,7 @@ class BaseModule:
         """
         if self.api_key:
             url = url.format(api_key=self.api_key)
-            if not "headers" in kwargs:
+            if "headers" not in kwargs:
                 kwargs["headers"] = {}
             kwargs["headers"]["Authorization"] = f"Bearer {self.api_key}"
         return url, kwargs
@@ -1142,7 +1142,7 @@ class BaseModule:
         # loop until we have a successful request
         for _ in range(self.api_retries):
-            if not "headers" in kwargs:
+            if "headers" not in kwargs:
                 kwargs["headers"] = {}
             new_url, kwargs = self.prepare_api_request(url, kwargs)
             kwargs["url"] = new_url
@@ -1589,7 +1589,7 @@ class BaseInterceptModule(BaseModule):
                                 event = incoming
                                 kwargs = {}
                         else:
-                            self.debug(f"Event queue is in bad state")
+                            self.debug("Event queue is in bad state")
                             break
                     except asyncio.queues.QueueEmpty:
                         await asyncio.sleep(0.1)
@@ -1644,7 +1644,7 @@ class BaseInterceptModule(BaseModule):
                 else:
                     self.critical(f"Critical failure in intercept module {self.name}: {e}")
                     self.critical(traceback.format_exc())
-        self.log.trace(f"Worker stopped")
+        self.log.trace("Worker stopped")
     async def get_incoming_event(self):
         """
@@ -1675,7 +1675,7 @@ class BaseInterceptModule(BaseModule):
         try:
             self.incoming_event_queue.put_nowait((event, kwargs))
         except AttributeError:
-            self.debug(f"Not in an acceptable state to queue incoming event")
+            self.debug("Not in an acceptable state to queue incoming event")
     async def _event_postcheck(self, event):
         return await self._event_postcheck_inner(event)

bbot/modules/bypass403.py CHANGED Viewed

@@ -92,7 +92,7 @@ class bypass403(BaseModule):
                 return None
             sig = self.format_signature(sig, event)
-            if sig[2] != None:
+            if sig[2] is not None:
                 headers = dict(sig[2])
             else:
                 headers = None
@@ -106,13 +106,13 @@ class bypass403(BaseModule):
                 continue
             # In some cases WAFs will respond with a 200 code which causes a false positive
-            if subject_response != None:
+            if subject_response is not None:
                 for ws in waf_strings:
                     if ws in subject_response.text:
                         self.debug("Rejecting result based on presence of WAF string")
                         return
-            if match == False:
+            if match is False:
                 if str(subject_response.status_code)[0] != "4":
                     if sig[2]:
                         added_header_tuple = next(iter(sig[2].items()))
@@ -165,13 +165,13 @@ class bypass403(BaseModule):
         return False
     def format_signature(self, sig, event):
-        if sig[3] == True:
+        if sig[3] is True:
             cleaned_path = event.parsed_url.path.strip("/")
         else:
             cleaned_path = event.parsed_url.path.lstrip("/")
         kwargs = {"scheme": event.parsed_url.scheme, "netloc": event.parsed_url.netloc, "path": cleaned_path}
         formatted_url = sig[1].format(**kwargs)
-        if sig[2] != None:
+        if sig[2] is not None:
             formatted_headers = {k: v.format(**kwargs) for k, v in sig[2].items()}
         else:
             formatted_headers = None

bbot/modules/c99.py CHANGED Viewed

@@ -20,7 +20,7 @@ class c99(subdomain_enum_apikey):
     async def ping(self):
         url = f"{self.base_url}/randomnumber?key={{api_key}}&between=1,100&json"
         response = await self.api_request(url)
-        assert response.json()["success"] == True, getattr(response, "text", "no response from server")
+        assert response.json()["success"] is True, getattr(response, "text", "no response from server")
     async def request_url(self, query):
         url = f"{self.base_url}/subdomainfinder?key={{api_key}}&domain={self.helpers.quote(query)}&json"

bbot/modules/columbus.py CHANGED Viewed

@@ -21,5 +21,5 @@ class columbus(subdomain_enum):
         results = set()
         json = r.json()
         if json and isinstance(json, list):
-            return set([f"{s.lower()}.{query}" for s in json])
+            return {f"{s.lower()}.{query}" for s in json}
         return results

bbot/modules/deadly/ffuf.py CHANGED Viewed

@@ -28,7 +28,7 @@ class ffuf(BaseModule):
     deps_common = ["ffuf"]
-    banned_characters = set([" "])
+    banned_characters = {" "}
     blacklist = ["images", "css", "image"]
     in_scope_only = True
@@ -52,7 +52,7 @@ class ffuf(BaseModule):
     async def handle_event(self, event):
         if self.helpers.url_depth(event.data) > self.config.get("max_depth"):
-            self.debug(f"Exceeded max depth, aborting event")
+            self.debug("Exceeded max depth, aborting event")
             return
         # only FFUF against a directory
@@ -122,7 +122,7 @@ class ffuf(BaseModule):
                 continue
             # if the codes are different, we should abort, this should also be a warning, as it is highly unusual behavior
-            if len(set(d["status"] for d in canary_results)) != 1:
+            if len({d["status"] for d in canary_results}) != 1:
                 self.warning("Got different codes for each baseline. This could indicate load balancing")
                 filters[ext] = ["ABORT", "BASELINE_CHANGED_CODES"]
                 continue
@@ -148,7 +148,7 @@ class ffuf(BaseModule):
                 continue
             # we start by seeing if all of the baselines have the same character count
-            if len(set(d["length"] for d in canary_results)) == 1:
+            if len({d["length"] for d in canary_results}) == 1:
                 self.debug("All baseline results had the same char count, we can make a filter on that")
                 filters[ext] = [
                     "-fc",
@@ -161,7 +161,7 @@ class ffuf(BaseModule):
                 continue
             # if that doesn't work we can try words
-            if len(set(d["words"] for d in canary_results)) == 1:
+            if len({d["words"] for d in canary_results}) == 1:
                 self.debug("All baseline results had the same word count, we can make a filter on that")
                 filters[ext] = [
                     "-fc",
@@ -174,7 +174,7 @@ class ffuf(BaseModule):
                 continue
             # as a last resort we will try lines
-            if len(set(d["lines"] for d in canary_results)) == 1:
+            if len({d["lines"] for d in canary_results}) == 1:
                 self.debug("All baseline results had the same word count, we can make a filter on that")
                 filters[ext] = [
                     "-fc",
@@ -252,7 +252,7 @@ class ffuf(BaseModule):
                         self.warning(f"Exiting from FFUF run early, received an ABORT filter: [{filters[ext][1]}]")
                         continue
-                    elif filters[ext] == None:
+                    elif filters[ext] is None:
                         pass
                     else:
@@ -282,7 +282,7 @@ class ffuf(BaseModule):
                         else:
                             if mode == "normal":
                                 # before emitting, we are going to send another baseline. This will immediately catch things like a WAF flipping blocking on us mid-scan
-                                if baseline == False:
+                                if baseline is False:
                                     pre_emit_temp_canary = [
                                         f
                                         async for f in self.execute_ffuf(

bbot/modules/deadly/nuclei.py CHANGED Viewed

@@ -226,7 +226,7 @@ class nuclei(BaseModule):
                 command.append(f"-{cli_option}")
                 command.append(option)
-        if self.scan.config.get("interactsh_disable") == True:
+        if self.scan.config.get("interactsh_disable") is True:
             self.info("Disbling interactsh in accordance with global settings")
             command.append("-no-interactsh")

bbot/modules/deadly/vhost.py CHANGED Viewed

@@ -23,7 +23,7 @@ class vhost(ffuf):
     }
     deps_common = ["ffuf"]
-    banned_characters = set([" ", "."])
+    banned_characters = {" ", "."}
     in_scope_only = True
@@ -73,7 +73,7 @@ class vhost(ffuf):
     async def ffuf_vhost(self, host, basehost, event, wordlist=None, skip_dns_host=False):
         filters = await self.baseline_ffuf(f"{host}/", exts=[""], suffix=basehost, mode="hostheader")
-        self.debug(f"Baseline completed and returned these filters:")
+        self.debug("Baseline completed and returned these filters:")
         self.debug(filters)
         if not wordlist:
             wordlist = self.tempfile
@@ -90,7 +90,7 @@ class vhost(ffuf):
                     parent=event,
                     context=f"{{module}} brute-forced virtual hosts for {event.data} and found {{event.type}}: {vhost_str}",
                 )
-                if skip_dns_host == False:
+                if skip_dns_host is False:
                     await self.emit_event(
                         f"{vhost_dict['vhost']}{basehost}",
                         "DNS_NAME",

bbot/modules/dnsbimi.py CHANGED Viewed

@@ -80,7 +80,7 @@ class dnsbimi(BaseModule):
             return False, "event is wildcard"
         # there's no value in inspecting service records
-        if service_record(event.host) == True:
+        if service_record(event.host) is True:
             return False, "service record detected"
         return True

bbot/modules/dnsdumpster.py CHANGED Viewed

@@ -31,7 +31,7 @@ class dnsdumpster(subdomain_enum):
         html = self.helpers.beautifulsoup(res1.content, "html.parser")
         if html is False:
-            self.verbose(f"BeautifulSoup returned False")
+            self.verbose("BeautifulSoup returned False")
             return ret
         csrftoken = None
@@ -82,7 +82,7 @@ class dnsdumpster(subdomain_enum):
             return ret
         html = self.helpers.beautifulsoup(res2.content, "html.parser")
         if html is False:
-            self.verbose(f"BeautifulSoup returned False")
+            self.verbose("BeautifulSoup returned False")
             return ret
         escaped_domain = re.escape(domain)
         match_pattern = re.compile(r"^[\w\.-]+\." + escaped_domain + r"$")

bbot/modules/dockerhub.py CHANGED Viewed

@@ -31,7 +31,7 @@ class dockerhub(BaseModule):
     async def handle_org_stub(self, event):
         profile_name = event.data
         # docker usernames are case sensitive, so if there are capitalizations we also try a lowercase variation
-        profiles_to_check = set([profile_name, profile_name.lower()])
+        profiles_to_check = {profile_name, profile_name.lower()}
         for p in profiles_to_check:
             api_url = f"{self.api_url}/users/{p}"
             api_result = await self.helpers.request(api_url, follow_redirects=True)

bbot/modules/dotnetnuke.py CHANGED Viewed

@@ -32,7 +32,6 @@ class dotnetnuke(BaseModule):
         self.interactsh_instance = None
         if self.scan.config.get("interactsh_disable", False) == False:
             try:
                 self.interactsh_instance = self.helpers.interactsh()
                 self.interactsh_domain = await self.interactsh_instance.register(callback=self.interactsh_callback)
@@ -114,7 +113,6 @@ class dotnetnuke(BaseModule):
                         )
             if "endpoint" not in event.tags:
                 # NewsArticlesSlider ImageHandler.ashx File Read
                 result = await self.helpers.request(
                     f'{event.data["url"]}/DesktopModules/dnnUI_NewsArticlesSlider/ImageHandler.ashx?img=~/web.config'

bbot/modules/extractous.py CHANGED Viewed

@@ -67,7 +67,7 @@ class extractous(BaseModule):
     scope_distance_modifier = 1
     async def setup(self):
-        self.extensions = list(set([e.lower().strip(".") for e in self.config.get("extensions", [])]))
+        self.extensions = list({e.lower().strip(".") for e in self.config.get("extensions", [])})
         return True
     async def filter_event(self, event):

bbot/modules/filedownload.py CHANGED Viewed

@@ -87,7 +87,7 @@ class filedownload(BaseModule):
     scope_distance_modifier = 3
     async def setup(self):
-        self.extensions = list(set([e.lower().strip(".") for e in self.config.get("extensions", [])]))
+        self.extensions = list({e.lower().strip(".") for e in self.config.get("extensions", [])})
         self.max_filesize = self.config.get("max_filesize", "10MB")
         self.download_dir = self.scan.home / "filedownload"
         self.helpers.mkdir(self.download_dir)

bbot/modules/generic_ssrf.py CHANGED Viewed

@@ -163,7 +163,7 @@ class generic_ssrf(BaseModule):
         self.severity = None
         self.generic_only = self.config.get("generic_only", False)
-        if self.scan.config.get("interactsh_disable", False) == False:
+        if self.scan.config.get("interactsh_disable", False) is False:
             try:
                 self.interactsh_instance = self.helpers.interactsh()
                 self.interactsh_domain = await self.interactsh_instance.register(callback=self.interactsh_callback)
@@ -216,7 +216,7 @@ class generic_ssrf(BaseModule):
                 self.debug("skipping result because subdomain tag was missing")
     async def cleanup(self):
-        if self.scan.config.get("interactsh_disable", False) == False:
+        if self.scan.config.get("interactsh_disable", False) is False:
             try:
                 await self.interactsh_instance.deregister()
                 self.debug(
@@ -226,7 +226,7 @@ class generic_ssrf(BaseModule):
                 self.warning(f"Interactsh failure: {e}")
     async def finish(self):
-        if self.scan.config.get("interactsh_disable", False) == False:
+        if self.scan.config.get("interactsh_disable", False) is False:
             await self.helpers.sleep(5)
             try:
                 for r in await self.interactsh_instance.poll():

bbot/modules/github_workflows.py CHANGED Viewed

@@ -166,7 +166,7 @@ class github_workflows(github):
             main_logs = []
             with zipfile.ZipFile(file_destination, "r") as logzip:
                 for name in logzip.namelist():
-                    if fnmatch.fnmatch(name, "*.txt") and not "/" in name:
+                    if fnmatch.fnmatch(name, "*.txt") and "/" not in name:
                         logzip.extract(name, folder)
                         main_logs.append(folder / name)
             return main_logs

bbot 2.3.0.5370rc0__py3-none-any.whl → 2.3.0.5382rc0__py3-none-any.whl

Potentially problematic release.

bbot 2.3.0.5370rc0py3-none-any.whl → 2.3.0.5382rc0py3-none-any.whl