endpointscanner 7.2.2__tar.gz → 7.2.3__tar.gz

{endpointscanner-7.2.2 → endpointscanner-7.2.3}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: endpointscanner
-Version: 7.2.2
+Version: 7.2.3
 Summary: Website endpoint reconnaissance tool and rate limit tester that can bypass simple captchas and WAFs.
 Project-URL: Homepage, https://github.com/SphericalFlower52811/endpointscanner
 Project-URL: Issues, https://github.com/SphericalFlower52811/endpointscanner/issues
@@ -16,7 +16,7 @@ Requires-Dist: playwright-stealth
 Requires-Dist: httpx[http2]>=0.27.0
 Dynamic: license-file
 
-# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.2)
+# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.3)
 
 A fast automated website reconnaissance tool that extracts endpoints, files, and even external links from websites. Automates IDOR and broken access control vulnerability testing through replacing variables with 1 in endpoints. Has a built in rate limit tester that can test on any endpoint, and can bypass simple WAFs/captchas and client-side SPAs.
 
@@ -189,12 +189,16 @@ Version 7.2.1 (patch update) added:
 
 Version 7.2.2 just changed wording and description of the tool to be more clear.
 
+Version 7.2.3 added one more sensitive endpoint and fixed bug where some paths would be / from extra files.
+
 ## Plans for next version and the future
 
 Version 7.3 is planned to have:
 
 - More JS Stacks to detect
 - Detecting what type of captcha was used if the script is blocked.
+- Fix pdf keys that look like endpoints (e.g. /Btn, /Widget)
+- Fix bug in scanning extra file: openid configuration. (currently no verification that the file is in the config format, meaning on SPAs it will be mistaken as a real file.)
 
 Future plans (May be added in the next version):
 

{endpointscanner-7.2.2 → endpointscanner-7.2.3}/README.md

@@ -1,4 +1,4 @@
-# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.2)
+# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.3)
 
 A fast automated website reconnaissance tool that extracts endpoints, files, and even external links from websites. Automates IDOR and broken access control vulnerability testing through replacing variables with 1 in endpoints. Has a built in rate limit tester that can test on any endpoint, and can bypass simple WAFs/captchas and client-side SPAs.
 
@@ -171,12 +171,16 @@ Version 7.2.1 (patch update) added:
 
 Version 7.2.2 just changed wording and description of the tool to be more clear.
 
+Version 7.2.3 added one more sensitive endpoint and fixed bug where some paths would be / from extra files.
+
 ## Plans for next version and the future
 
 Version 7.3 is planned to have:
 
 - More JS Stacks to detect
 - Detecting what type of captcha was used if the script is blocked.
+- Fix pdf keys that look like endpoints (e.g. /Btn, /Widget)
+- Fix bug in scanning extra file: openid configuration. (currently no verification that the file is in the config format, meaning on SPAs it will be mistaken as a real file.)
 
 Future plans (May be added in the next version):
 

{endpointscanner-7.2.2 → endpointscanner-7.2.3}/endpointscanner.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: endpointscanner
-Version: 7.2.2
+Version: 7.2.3
 Summary: Website endpoint reconnaissance tool and rate limit tester that can bypass simple captchas and WAFs.
 Project-URL: Homepage, https://github.com/SphericalFlower52811/endpointscanner
 Project-URL: Issues, https://github.com/SphericalFlower52811/endpointscanner/issues
@@ -16,7 +16,7 @@ Requires-Dist: playwright-stealth
 Requires-Dist: httpx[http2]>=0.27.0
 Dynamic: license-file
 
-# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.2)
+# Website Endpoint Scanner and Rate Limit Tester For Websites (Version 7.2.3)
 
 A fast automated website reconnaissance tool that extracts endpoints, files, and even external links from websites. Automates IDOR and broken access control vulnerability testing through replacing variables with 1 in endpoints. Has a built in rate limit tester that can test on any endpoint, and can bypass simple WAFs/captchas and client-side SPAs.
 
@@ -189,12 +189,16 @@ Version 7.2.1 (patch update) added:
 
 Version 7.2.2 just changed wording and description of the tool to be more clear.
 
+Version 7.2.3 added one more sensitive endpoint and fixed bug where some paths would be / from extra files.
+
 ## Plans for next version and the future
 
 Version 7.3 is planned to have:
 
 - More JS Stacks to detect
 - Detecting what type of captcha was used if the script is blocked.
+- Fix pdf keys that look like endpoints (e.g. /Btn, /Widget)
+- Fix bug in scanning extra file: openid configuration. (currently no verification that the file is in the config format, meaning on SPAs it will be mistaken as a real file.)
 
 Future plans (May be added in the next version):
 

{endpointscanner-7.2.2 → endpointscanner-7.2.3}/enumerateendpoint.py

@@ -225,9 +225,7 @@ async def async_rate_test(url, num_reqs=100, method="GET", rb=None, rv=None, coo
             print("[+] Streaming requests into the background network pipeline...")
             await asyncio.sleep(45.0)
 
-        #after network is gone
-        #Fancy label below
-        #----AFTER NETWORK IS GONE----
+        #label every single request using enumerate() to find out exactly when the first request timed out, or hit a non-200.
         status_counts = {}
         first_limit_at = None
         
@@ -404,7 +402,7 @@ def main():
             exit(1)
             
         if args.ratelimit_body and args.ratelimit_var:
-            # bracket escaping
+            # bracket escaping, so if someone puts {{X}} or X, it will end up as {X}.
             expected_bracket_token = f"{{{args.ratelimit_var.strip('{}')}}}"
 
             if expected_bracket_token not in args.ratelimit_body:
@@ -473,7 +471,7 @@ def main():
     start_test_time = time.perf_counter()
     #hardcoded dangerous endpoints to test
     SENSITIVE_ENDPOINT = {
-        "/.env", "/.env.local", "/.env.production", "/.env.development", 
+        "/.env", "/.env.local", "/.env.production", "/.env.development", ".env.dev",
         "/.git/config", "/.git/HEAD", "/package.json", "/package-lock.json", "/.npmrc", "/.dockerenv",
         "/.gitignore", "/api/health", "/admin", "/login", "/config",
         "/.env.example", "/docker-compose.yml", "/.babelrc", "/.eslintrc.json",
@@ -504,6 +502,8 @@ def main():
                 for rule in rules:
                     clean_rule = rule.strip()
                     if clean_rule and clean_rule not in ["/", "/*"] and clean_rule not in found_paths:
+                        if clean_rule.strip() in ["/", "/*"]:
+                            continue
                         found_paths.add(clean_rule)
                         results_fromotherfiles.append(f"{clean_rule} [Source: robots.txt]")
                         if args.show_prog:
@@ -519,6 +519,8 @@ def main():
                 for loc in locs:
                     clean_path = loc.strip()
                     if clean_path and clean_path != "/" and clean_path not in found_paths:
+                        if clean_path.strip() == "/":
+                            continue
                         found_paths.add(clean_path)
                         if not args.tidy:
                             results_fromotherfiles.append(f"{clean_path} [Source: sitemap.xml]")
@@ -536,6 +538,8 @@ def main():
                 paths = re.findall(r'["\'](/[a-zA-Z0-9_\-\./]+)["\']', m_res.text)
                 for path in paths:
                     if path not in found_paths:
+                        if path.strip() == "/":
+                            continue
                         found_paths.add(path)
                         if not args.tidy:
                             results_fromotherfiles.append(f"{path} [Source: asset-manifest.json]")
@@ -553,6 +557,8 @@ def main():
                     paths = re.findall(r'["\'](/[a-zA-Z0-9_\-\./]+)["\']', m_res.text)
                     for path in paths:
                         if path not in found_paths:
+                            if path.strip() == "/":
+                                continue
                             found_paths.add(path)
                             if not args.tidy:
                                 results_fromotherfiles.append(f"{path} [Source: {manifest_path.lstrip('/')}]")
@@ -572,6 +578,8 @@ def main():
                     paths = re.findall(r'["\'`](/[a-zA-Z0-9_\-\./{}:]+)["\'`]', sw_res.text)
                     for path in paths:
                         if path not in found_paths and not any(path.endswith(ext) for ext in ['.js', '.css']):
+                            if path.strip() == "/":
+                                continue
                             found_paths.add(path)
                             if not args.tidy:
                                 results_fromotherfiles.append(f"{path} [Source: {sw_path}]")
@@ -589,6 +597,8 @@ def main():
                 paths = re.findall(r'https?://[^/]+(/[^"\']*)', oidc_res.text)
                 for path in paths:
                     if path not in found_paths:
+                        if path.strip() == "/":
+                            continue
                         found_paths.add(path)
                         if not args.tidy:
                             results_fromotherfiles.append(f"{path} [Source: openid-configuration]")

{endpointscanner-7.2.2 → endpointscanner-7.2.3}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "endpointscanner"
-version = "7.2.2"
+version = "7.2.3"
 readme = "README.md"
 description = "Website endpoint reconnaissance tool and rate limit tester that can bypass simple captchas and WAFs."
 requires-python = ">=3.9"