bbot 2.7.0.6919rc0__py3-none-any.whl → 2.7.0.6930rc0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of bbot might be problematic. Click here for more details.
- bbot/__init__.py +1 -1
- bbot/modules/subdomaincenter.py +1 -16
- bbot/modules/telerik.py +6 -1
- bbot/test/test_step_2/module_tests/test_module_telerik.py +1 -1
- {bbot-2.7.0.6919rc0.dist-info → bbot-2.7.0.6930rc0.dist-info}/METADATA +1 -1
- {bbot-2.7.0.6919rc0.dist-info → bbot-2.7.0.6930rc0.dist-info}/RECORD +9 -9
- {bbot-2.7.0.6919rc0.dist-info → bbot-2.7.0.6930rc0.dist-info}/LICENSE +0 -0
- {bbot-2.7.0.6919rc0.dist-info → bbot-2.7.0.6930rc0.dist-info}/WHEEL +0 -0
- {bbot-2.7.0.6919rc0.dist-info → bbot-2.7.0.6930rc0.dist-info}/entry_points.txt +0 -0
bbot/__init__.py
CHANGED
bbot/modules/subdomaincenter.py
CHANGED
|
@@ -12,25 +12,10 @@ class subdomaincenter(subdomain_enum):
|
|
|
12
12
|
}
|
|
13
13
|
|
|
14
14
|
base_url = "https://api.subdomain.center"
|
|
15
|
-
retries = 2
|
|
16
|
-
|
|
17
|
-
async def sleep(self, time_to_wait):
|
|
18
|
-
self.info(f"Sleeping for {time_to_wait} seconds to avoid rate limit")
|
|
19
|
-
await self.helpers.sleep(time_to_wait)
|
|
20
15
|
|
|
21
16
|
async def request_url(self, query):
|
|
22
17
|
url = f"{self.base_url}/?domain={self.helpers.quote(query)}"
|
|
23
|
-
response =
|
|
24
|
-
status_code = 0
|
|
25
|
-
for i, _ in enumerate(range(self.retries + 1)):
|
|
26
|
-
if i > 0:
|
|
27
|
-
self.verbose(f"Retry #{i} for {query} after response code {status_code}")
|
|
28
|
-
response = await self.helpers.request(url, timeout=self.http_timeout + 30)
|
|
29
|
-
status_code = getattr(response, "status_code", 0)
|
|
30
|
-
if status_code == 429:
|
|
31
|
-
await self.sleep(20)
|
|
32
|
-
else:
|
|
33
|
-
break
|
|
18
|
+
response = await self.api_request(url)
|
|
34
19
|
return response
|
|
35
20
|
|
|
36
21
|
async def parse_results(self, r, query):
|
bbot/modules/telerik.py
CHANGED
|
@@ -204,7 +204,7 @@ class telerik(BaseModule):
|
|
|
204
204
|
webresource = "Telerik.Web.UI.WebResource.axd?type=rau"
|
|
205
205
|
result, _ = await self.test_detector(base_url, webresource)
|
|
206
206
|
if result:
|
|
207
|
-
if "RadAsyncUpload handler is registered
|
|
207
|
+
if "RadAsyncUpload handler is registered succesfully" in result.text:
|
|
208
208
|
self.verbose("Detected Telerik instance (Telerik.Web.UI.WebResource.axd?type=rau)")
|
|
209
209
|
|
|
210
210
|
probe_data = {
|
|
@@ -263,6 +263,11 @@ class telerik(BaseModule):
|
|
|
263
263
|
str(root_tool_path / "testfile.txt"),
|
|
264
264
|
result.url,
|
|
265
265
|
]
|
|
266
|
+
|
|
267
|
+
# Add proxy if set in the scan config
|
|
268
|
+
if self.scan.http_proxy:
|
|
269
|
+
command.append(self.scan.http_proxy)
|
|
270
|
+
|
|
266
271
|
output = await self.run_process(command)
|
|
267
272
|
description = f"[CVE-2017-11317] [{str(version)}] {webresource}"
|
|
268
273
|
if "fileInfo" in output.stdout:
|
|
@@ -11,7 +11,7 @@ class TestTelerik(ModuleTestBase):
|
|
|
11
11
|
# Simulate Telerik.Web.UI.WebResource.axd?type=rau detection
|
|
12
12
|
expect_args = {"method": "GET", "uri": "/Telerik.Web.UI.WebResource.axd", "query_string": "type=rau"}
|
|
13
13
|
respond_args = {
|
|
14
|
-
"response_data": '{ "message" : "RadAsyncUpload handler is registered
|
|
14
|
+
"response_data": '{ "message" : "RadAsyncUpload handler is registered succesfully, however, it may not be accessed directly." }'
|
|
15
15
|
}
|
|
16
16
|
module_test.set_expect_requests(expect_args=expect_args, respond_args=respond_args)
|
|
17
17
|
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.3
|
|
2
2
|
Name: bbot
|
|
3
|
-
Version: 2.7.0.
|
|
3
|
+
Version: 2.7.0.6930rc0
|
|
4
4
|
Summary: OSINT automation for hackers.
|
|
5
5
|
License: GPL-3.0
|
|
6
6
|
Keywords: python,cli,automation,osint,threat-intel,intelligence,neo4j,scanner,python-library,hacking,recursion,pentesting,recon,command-line-tool,bugbounty,subdomains,security-tools,subdomain-scanner,osint-framework,attack-surface,subdomain-enumeration,osint-tool
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
bbot/__init__.py,sha256=
|
|
1
|
+
bbot/__init__.py,sha256=4UHV9nVL0sOLBlSkR_Bc70XtHWKwhXWcq5RWH0U7zg0,163
|
|
2
2
|
bbot/cli.py,sha256=1QJbANVw9Q3GFM92H2QRV2ds5756ulm08CDZwzwPpeI,11888
|
|
3
3
|
bbot/core/__init__.py,sha256=l255GJE_DvUnWvrRb0J5lG-iMztJ8zVvoweDOfegGtI,46
|
|
4
4
|
bbot/core/config/__init__.py,sha256=zYNw2Me6tsEr8hOOkLb4BQ97GB7Kis2k--G81S8vofU,342
|
|
@@ -197,9 +197,9 @@ bbot/modules/skymem.py,sha256=ZrxWcePFTCiDkFeAc3YLegFG-Tgw4C9af_JHiVonk84,1930
|
|
|
197
197
|
bbot/modules/smuggler.py,sha256=v8NCRgzd7wpEFZJUTAArG04bN8nNTGiHxYpGBapzi14,1580
|
|
198
198
|
bbot/modules/social.py,sha256=SaXC8gK69k9aMNHS9y7b-Ag-w7U7DbeXqrZRx9CtXLw,2499
|
|
199
199
|
bbot/modules/sslcert.py,sha256=83rf_rzlj4iku3gldx1_R1L_v3ZCGItGPay8JviUy9w,8211
|
|
200
|
-
bbot/modules/subdomaincenter.py,sha256=
|
|
200
|
+
bbot/modules/subdomaincenter.py,sha256=VJbRIazcSVeaU2KAqx9Jzpec1CaQNHtOHx0t_hh5VKg,811
|
|
201
201
|
bbot/modules/subdomainradar.py,sha256=YlRNMtNGLpa13KZ7aksAMVZdSjxe1tkywU5RXlwXpPc,6784
|
|
202
|
-
bbot/modules/telerik.py,sha256=
|
|
202
|
+
bbot/modules/telerik.py,sha256=kWi498zihl02gHaS7AvyAxlEAZvmfKgKMSTAG8CS62A,19108
|
|
203
203
|
bbot/modules/templates/bucket.py,sha256=muLPpfAGtcNhL0tLU-qHTlTNIz4yncRcVjdZMqVRtUI,7153
|
|
204
204
|
bbot/modules/templates/github.py,sha256=lrV1EYPqjtPkJsS0fQfqmLvGchNo_fO3A75W9-03gxY,2531
|
|
205
205
|
bbot/modules/templates/postman.py,sha256=MIpz2q_r6LP0kIEgByo7oX5qHhMZLOhr7oKzJI9Beec,6959
|
|
@@ -422,7 +422,7 @@ bbot/test/test_step_2/module_tests/test_module_subdomaincenter.py,sha256=KXprbHa
|
|
|
422
422
|
bbot/test/test_step_2/module_tests/test_module_subdomainradar.py,sha256=c6aUKr4yrGJqrQP0hOaP6Ao4-PQn1N_IlaqSw6E-xW8,10672
|
|
423
423
|
bbot/test/test_step_2/module_tests/test_module_subdomains.py,sha256=r1zCmw5ZZ_0wA7L7cDg9dpgdpRigjQXhf-Zm7P4ya9Q,1108
|
|
424
424
|
bbot/test/test_step_2/module_tests/test_module_teams.py,sha256=r91ZZxhj3pEhKnjr1jGwhcqOPXTqNJNupC1CDKccfH8,1638
|
|
425
|
-
bbot/test/test_step_2/module_tests/test_module_telerik.py,sha256=
|
|
425
|
+
bbot/test/test_step_2/module_tests/test_module_telerik.py,sha256=1U9YBbXc7TnL1ZDE7YorLLM7XLBvzBLr5w4wiXnyIHQ,11098
|
|
426
426
|
bbot/test/test_step_2/module_tests/test_module_trickest.py,sha256=6mTYH6fIah-WbKnFI-_WZBwRdKFi-oeWyVtl1n0nVAU,1630
|
|
427
427
|
bbot/test/test_step_2/module_tests/test_module_trufflehog.py,sha256=lXX2KYh5s1FVpivth43Nj3MLfMkiksrooEne_DAL_qg,96796
|
|
428
428
|
bbot/test/test_step_2/module_tests/test_module_txt.py,sha256=R-EBfEZM0jwY2yuVyfYhoccDOl0Y2uQZSkXQ1HyinUA,247
|
|
@@ -453,8 +453,8 @@ bbot/wordlists/raft-small-extensions-lowercase_CLEANED.txt,sha256=ZSIVebs7ptMvHx
|
|
|
453
453
|
bbot/wordlists/top_open_ports_nmap.txt,sha256=LmdFYkfapSxn1pVuQC2LkOIY2hMLgG-Xts7DVtYzweM,42727
|
|
454
454
|
bbot/wordlists/valid_url_schemes.txt,sha256=0B_VAr9Dv7aYhwi6JSBDU-3M76vNtzN0qEC_RNLo7HE,3310
|
|
455
455
|
bbot/wordlists/wordninja_dns.txt.gz,sha256=DYHvvfW0TvzrVwyprqODAk4tGOxv5ezNmCPSdPuDUnQ,570241
|
|
456
|
-
bbot-2.7.0.
|
|
457
|
-
bbot-2.7.0.
|
|
458
|
-
bbot-2.7.0.
|
|
459
|
-
bbot-2.7.0.
|
|
460
|
-
bbot-2.7.0.
|
|
456
|
+
bbot-2.7.0.6930rc0.dist-info/LICENSE,sha256=GzeCzK17hhQQDNow0_r0L8OfLpeTKQjFQwBQU7ZUymg,32473
|
|
457
|
+
bbot-2.7.0.6930rc0.dist-info/METADATA,sha256=BxHUvhzqlzp83wS8P4NZejLIenQnfFs868t0diaDpEM,18308
|
|
458
|
+
bbot-2.7.0.6930rc0.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
|
|
459
|
+
bbot-2.7.0.6930rc0.dist-info/entry_points.txt,sha256=cWjvcU_lLrzzJgjcjF7yeGuRA_eDS8pQ-kmPUAyOBfo,38
|
|
460
|
+
bbot-2.7.0.6930rc0.dist-info/RECORD,,
|
|
File without changes
|
|
File without changes
|
|
File without changes
|