PyPI - oneforall-kjl - Versions diffs - 0.1.1__py3-none-any.whl - Mend

oneforall-kjl 0.1.1__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (114) hide show

OneForAll/__init__.py +15 -0
OneForAll/brute.py +503 -0
OneForAll/common/check.py +41 -0
OneForAll/common/crawl.py +10 -0
OneForAll/common/database.py +277 -0
OneForAll/common/domain.py +63 -0
OneForAll/common/ipasn.py +42 -0
OneForAll/common/ipreg.py +139 -0
OneForAll/common/lookup.py +28 -0
OneForAll/common/module.py +369 -0
OneForAll/common/query.py +9 -0
OneForAll/common/records.py +363 -0
OneForAll/common/request.py +264 -0
OneForAll/common/resolve.py +173 -0
OneForAll/common/search.py +78 -0
OneForAll/common/similarity.py +138 -0
OneForAll/common/tablib/__init__.py +0 -0
OneForAll/common/tablib/format.py +89 -0
OneForAll/common/tablib/tablib.py +360 -0
OneForAll/common/tldextract.py +240 -0
OneForAll/common/utils.py +789 -0
OneForAll/config/__init__.py +17 -0
OneForAll/config/api.py +94 -0
OneForAll/config/default.py +255 -0
OneForAll/config/log.py +38 -0
OneForAll/config/setting.py +108 -0
OneForAll/export.py +72 -0
OneForAll/modules/altdns.py +216 -0
OneForAll/modules/autotake/github.py +105 -0
OneForAll/modules/certificates/censys_api.py +73 -0
OneForAll/modules/certificates/certspotter.py +48 -0
OneForAll/modules/certificates/crtsh.py +84 -0
OneForAll/modules/certificates/google.py +48 -0
OneForAll/modules/certificates/myssl.py +46 -0
OneForAll/modules/certificates/racent.py +49 -0
OneForAll/modules/check/axfr.py +97 -0
OneForAll/modules/check/cdx.py +44 -0
OneForAll/modules/check/cert.py +58 -0
OneForAll/modules/check/csp.py +94 -0
OneForAll/modules/check/nsec.py +58 -0
OneForAll/modules/check/robots.py +44 -0
OneForAll/modules/check/sitemap.py +44 -0
OneForAll/modules/collect.py +70 -0
OneForAll/modules/crawl/archivecrawl.py +59 -0
OneForAll/modules/crawl/commoncrawl.py +59 -0
OneForAll/modules/datasets/anubis.py +45 -0
OneForAll/modules/datasets/bevigil.py +50 -0
OneForAll/modules/datasets/binaryedge_api.py +50 -0
OneForAll/modules/datasets/cebaidu.py +45 -0
OneForAll/modules/datasets/chinaz.py +45 -0
OneForAll/modules/datasets/chinaz_api.py +49 -0
OneForAll/modules/datasets/circl_api.py +49 -0
OneForAll/modules/datasets/cloudflare_api.py +130 -0
OneForAll/modules/datasets/dnsdb_api.py +51 -0
OneForAll/modules/datasets/dnsdumpster.py +52 -0
OneForAll/modules/datasets/dnsgrep.py +44 -0
OneForAll/modules/datasets/fullhunt.py +48 -0
OneForAll/modules/datasets/hackertarget.py +45 -0
OneForAll/modules/datasets/ip138.py +45 -0
OneForAll/modules/datasets/ipv4info_api.py +73 -0
OneForAll/modules/datasets/netcraft.py +66 -0
OneForAll/modules/datasets/passivedns_api.py +51 -0
OneForAll/modules/datasets/qianxun.py +61 -0
OneForAll/modules/datasets/rapiddns.py +45 -0
OneForAll/modules/datasets/riddler.py +45 -0
OneForAll/modules/datasets/robtex.py +58 -0
OneForAll/modules/datasets/securitytrails_api.py +56 -0
OneForAll/modules/datasets/sitedossier.py +57 -0
OneForAll/modules/datasets/spyse_api.py +62 -0
OneForAll/modules/datasets/sublist3r.py +45 -0
OneForAll/modules/datasets/urlscan.py +45 -0
OneForAll/modules/datasets/windvane.py +92 -0
OneForAll/modules/dnsquery/mx.py +35 -0
OneForAll/modules/dnsquery/ns.py +35 -0
OneForAll/modules/dnsquery/soa.py +35 -0
OneForAll/modules/dnsquery/spf.py +35 -0
OneForAll/modules/dnsquery/txt.py +35 -0
OneForAll/modules/enrich.py +72 -0
OneForAll/modules/finder.py +206 -0
OneForAll/modules/intelligence/alienvault.py +50 -0
OneForAll/modules/intelligence/riskiq_api.py +58 -0
OneForAll/modules/intelligence/threatbook_api.py +50 -0
OneForAll/modules/intelligence/threatminer.py +45 -0
OneForAll/modules/intelligence/virustotal.py +60 -0
OneForAll/modules/intelligence/virustotal_api.py +59 -0
OneForAll/modules/iscdn.py +86 -0
OneForAll/modules/search/ask.py +69 -0
OneForAll/modules/search/baidu.py +96 -0
OneForAll/modules/search/bing.py +79 -0
OneForAll/modules/search/bing_api.py +78 -0
OneForAll/modules/search/fofa_api.py +74 -0
OneForAll/modules/search/gitee.py +71 -0
OneForAll/modules/search/github_api.py +86 -0
OneForAll/modules/search/google.py +83 -0
OneForAll/modules/search/google_api.py +77 -0
OneForAll/modules/search/hunter_api.py +72 -0
OneForAll/modules/search/quake_api.py +72 -0
OneForAll/modules/search/shodan_api.py +53 -0
OneForAll/modules/search/so.py +75 -0
OneForAll/modules/search/sogou.py +72 -0
OneForAll/modules/search/wzsearch.py +68 -0
OneForAll/modules/search/yahoo.py +81 -0
OneForAll/modules/search/yandex.py +80 -0
OneForAll/modules/search/zoomeye_api.py +73 -0
OneForAll/modules/srv.py +75 -0
OneForAll/modules/wildcard.py +319 -0
OneForAll/oneforall.py +275 -0
OneForAll/takeover.py +168 -0
OneForAll/test.py +23 -0
oneforall_kjl-0.1.1.dist-info/METADATA +18 -0
oneforall_kjl-0.1.1.dist-info/RECORD +114 -0
oneforall_kjl-0.1.1.dist-info/WHEEL +5 -0
oneforall_kjl-0.1.1.dist-info/entry_points.txt +2 -0
oneforall_kjl-0.1.1.dist-info/top_level.txt +1 -0

OneForAll/modules/search/gitee.py ADDED Viewed

@@ -0,0 +1,71 @@
+import time
+from bs4 import BeautifulSoup
+from common.search import Search
+from config.log import logger
+class Gitee(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.source = 'GiteeSearch'
+        self.module = 'Search'
+        self.addr = 'https://search.gitee.com/'
+        self.domain = domain
+    def search(self):
+        """
+        向接口查询子域并做子域匹配
+        """
+        page_num = 1
+        while True:
+            time.sleep(self.delay)
+            self.header = self.get_header()
+            self.proxy = self.get_proxy(self.source)
+            params = {'pageno': page_num, 'q': self.domain, 'type': 'code'}
+            try:
+                resp = self.get(self.addr, params=params)
+            except Exception as e:
+                logger.log('ERROR', e.args)
+                break
+            if not resp:
+                break
+            if resp.status_code != 200:
+                logger.log('ERROR', f'{self.source} module query failed')
+                break
+            if 'class="empty-box"' in resp.text:
+                break
+            soup = BeautifulSoup(resp.text, 'html.parser')
+            subdomains = self.match_subdomains(soup, fuzzy=False)
+            if not self.check_subdomains(subdomains):
+                break
+            self.subdomains.update(subdomains)
+            if '<li class="disabled"><a href="###">' in resp.text:
+                break
+            page_num += 1
+            if page_num >= 100:
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        self.begin()
+        self.search()
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    query = Gitee(domain)
+    query.run()
+if __name__ == '__main__':
+    run('qq.com')

OneForAll/modules/search/github_api.py ADDED Viewed

@@ -0,0 +1,86 @@
+import time
+from config import settings
+from common.search import Search
+from config.log import logger
+class GithubAPI(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.source = 'GithubAPISearch'
+        self.module = 'Search'
+        self.addr = 'https://api.github.com/search/code'
+        self.domain = domain
+        self.delay = 5
+        self.token = settings.github_api_token
+    def search(self):
+        """
+        向接口查询子域并做子域匹配
+        """
+        self.header = self.get_header()
+        self.proxy = self.get_proxy(self.source)
+        self.header.update(
+            {'Accept': 'application/vnd.github.v3.text-match+json'})
+        self.header.update(
+            {'Authorization': 'token ' + self.token})
+        page = 1
+        while True:
+            time.sleep(self.delay)
+            params = {'q': self.domain, 'per_page': 100,
+                      'page': page, 'sort': 'indexed',
+                      'access_token': self.token}
+            try:
+                resp = self.get(self.addr, params=params)
+            except Exception as e:
+                logger.log('ERROR', e.args)
+                break
+            if not resp or resp.status_code != 200:
+                logger.log('ERROR', f'{self.source} module query failed')
+                break
+            subdomains = self.match_subdomains(resp)
+            if not subdomains:
+                break
+            self.subdomains.update(subdomains)
+            page += 1
+            try:
+                resp_json = resp.json()
+            except Exception as e:
+                logger.log('ERROR', e.args)
+                break
+            total_count = resp_json.get('total_count')
+            if not isinstance(total_count, int):
+                break
+            if page * 100 > total_count:
+                break
+            if page * 100 > 1000:
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        if not self.have_api(self.token):
+            return
+        self.begin()
+        self.search()
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    query = GithubAPI(domain)
+    query.run()
+if __name__ == '__main__':
+    run('freebuf.com')

OneForAll/modules/search/google.py ADDED Viewed

@@ -0,0 +1,83 @@
+import random
+import time
+from common.search import Search
+class Google(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'GoogleSearch'
+        self.init = 'https://www.google.com/'
+        self.addr = 'https://www.google.com/search'
+    def search(self, domain, filtered_subdomain=''):
+        """
+        发送搜索请求并做子域匹配
+        :param str domain: 域名
+        :param str filtered_subdomain: 过滤的子域
+        """
+        page_num = 1
+        per_page_num = 50
+        self.header = self.get_header()
+        self.header.update({'User-Agent': 'Googlebot',
+                            'Referer': 'https://www.google.com'})
+        self.proxy = self.get_proxy(self.source)
+        resp = self.get(self.init)
+        if not resp:
+            return
+        self.cookie = resp.cookies
+        while True:
+            self.delay = random.randint(1, 5)
+            time.sleep(self.delay)
+            self.proxy = self.get_proxy(self.source)
+            word = 'site:.' + domain + filtered_subdomain
+            payload = {'q': word, 'start': page_num, 'num': per_page_num,
+                       'filter': '0', 'btnG': 'Search', 'gbv': '1', 'hl': 'en'}
+            resp = self.get(url=self.addr, params=payload)
+            subdomains = self.match_subdomains(resp, fuzzy=False)
+            if not self.check_subdomains(subdomains):
+                break
+            self.subdomains.update(subdomains)
+            page_num += per_page_num
+            if 'start=' + str(page_num) not in resp.text:
+                break
+            if '302 Moved' in resp.text:
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        self.begin()
+        self.search(self.domain)
+        # 排除同一子域搜索结果过多的子域以发现新的子域
+        for statement in self.filter(self.domain, self.subdomains):
+            self.search(self.domain, filtered_subdomain=statement)
+        # 递归搜索下一层的子域
+        if self.recursive_search:
+            for subdomain in self.recursive_subdomain():
+                self.search(subdomain)
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = Google(domain)
+    search.run()
+if __name__ == '__main__':
+    run('example.com')

OneForAll/modules/search/google_api.py ADDED Viewed

@@ -0,0 +1,77 @@
+import time
+from config import settings
+from common.search import Search
+class GoogleAPI(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'GoogleAPISearch'
+        self.addr = 'https://www.googleapis.com/customsearch/v1'
+        self.delay = 1
+        self.key = settings.google_api_key
+        self.id = settings.google_api_id
+        self.per_page_num = 10  # 每次只能请求10个结果
+    def search(self, domain, filtered_subdomain=''):
+        """
+        发送搜索请求并做子域匹配
+        :param str domain: 域名
+        :param str filtered_subdomain: 过滤的子域
+        """
+        self.page_num = 1
+        while True:
+            word = 'site:.' + domain + filtered_subdomain
+            time.sleep(self.delay)
+            self.header = self.get_header()
+            self.proxy = self.get_proxy(self.source)
+            params = {'key': self.key, 'cx': self.id,
+                      'q': word, 'fields': 'items/link',
+                      'start': self.page_num, 'num': self.per_page_num}
+            resp = self.get(self.addr, params)
+            subdomains = self.match_subdomains(resp)
+            if not self.check_subdomains(subdomains):
+                break
+            self.subdomains.update(subdomains)
+            self.page_num += self.per_page_num
+            if self.page_num > 100:  # 免费的API只能查询前100条结果
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        if not self.have_api(self.id, self.key):
+            return
+        self.begin()
+        self.search(self.domain)
+        # 排除同一子域搜索结果过多的子域以发现新的子域
+        for statement in self.filter(self.domain, self.subdomains):
+            self.search(self.domain, filtered_subdomain=statement)
+        # 递归搜索下一层的子域
+        if self.recursive_search:
+            for subdomain in self.recursive_subdomain():
+                self.search(subdomain)
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = GoogleAPI(domain)
+    search.run()
+if __name__ == '__main__':
+    run('mi.com')

OneForAll/modules/search/hunter_api.py ADDED Viewed

@@ -0,0 +1,72 @@
+import base64
+import time
+from config import settings
+from common.search import Search
+class Hunter(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'HunterAPISearch'
+        self.addr = 'https://hunter.qianxin.com/openApi/search'
+        self.delay = 1
+        self.key = settings.hunter_api_key
+    def search(self):
+        """
+        发送搜索请求并做子域匹配
+        """
+        self.page_num = 1
+        subdomain_encode = f'domain_suffix="{self.domain}"'.encode('utf-8')
+        query_data = base64.b64encode(subdomain_encode)
+        while 100 * self.page_num < settings.cam_records_maximum_per_domain:
+            time.sleep(self.delay)
+            self.header = self.get_header()
+            self.proxy = self.get_proxy(self.source)
+            query = {'api-key': self.key,
+                     'search': query_data,
+                     'page': self.page_num,
+                     'page_size': 100,
+                     'is_web': 1}
+            resp = self.get(self.addr, query)
+            if not resp:
+                return
+            resp_json = resp.json()
+            subdomains = self.match_subdomains(resp)
+            if not subdomains:  # 搜索没有发现子域名则停止搜索
+                break
+            self.subdomains.update(subdomains)
+            total = resp_json.get('data').get('total')
+            if self.page_num * 100 >= int(total):
+                break
+            self.page_num += 1
+    def run(self):
+        """
+        类执行入口
+        """
+        if not self.have_api(self.key):
+            return
+        self.begin()
+        self.search()
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = Hunter(domain)
+    search.run()
+if __name__ == '__main__':
+    run('freebuf.com')

OneForAll/modules/search/quake_api.py ADDED Viewed

@@ -0,0 +1,72 @@
+import time
+from config import settings
+from common.search import Search
+class Quake(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Quake'
+        self.source = "QuakeAPISearch"
+        self.addr = 'https://quake.360.net/api/v3/search/quake_service'
+        self.delay = 1
+        self.key = settings.quake_api_key
+    def search(self):
+        """
+        发送搜索请求并做子域匹配
+        """
+        self.per_page_num = 100
+        self.page_num = 0
+        while self.per_page_num * self.page_num < settings.cam_records_maximum_per_domain:
+            time.sleep(self.delay)
+            self.header = self.get_header()
+            self.header.update({'Content-Type': 'application/json'})
+            self.header.update({'X-QuakeToken': self.key})
+            self.proxy = self.get_proxy(self.source)
+            query = {'query': 'domain:"' + self.domain + '"',
+                     'start': self.page_num * self.per_page_num,
+                     'size': self.per_page_num,
+                     'include': ["service.http.host"]}
+            resp = self.post(self.addr, json=query)
+            if not resp:
+                return
+            resp_json = resp.json()
+            subdomains = self.match_subdomains(resp)
+            if not subdomains:  # 搜索没有发现子域名则停止搜索
+                break
+            self.subdomains.update(subdomains)
+            total = resp_json.get('meta').get('pagination').get('total')
+            self.page_num += 1
+            if self.page_num * self.per_page_num >= int(total):
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        if not self.have_api(self.key):
+            return
+        self.begin()
+        self.search()
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    query = Quake(domain)
+    query.run()
+if __name__ == '__main__':
+    run('nosugartech.com')

OneForAll/modules/search/shodan_api.py ADDED Viewed

@@ -0,0 +1,53 @@
+from config import settings
+from common.search import Search
+class ShodanAPI(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'ShodanAPISearch'
+        self.key = settings.shodan_api_key
+    def search(self):
+        """
+        发送搜索请求并做子域匹配
+        """
+        self.header = self.get_header()
+        self.proxy = self.get_proxy(self.source)
+        url = f'https://api.shodan.io/dns/domain/{self.domain}?key={self.key}'
+        resp = self.get(url)
+        if not resp:
+            return
+        data = resp.json()
+        names = data.get('subdomains')
+        subdomain_str = str(set(map(lambda name: f'{name}.{self.domain}', names)))
+        self.subdomains = self.collect_subdomains(subdomain_str)
+    def run(self):
+        """
+        类执行入口
+        """
+        if not self.have_api(self.key):
+            return
+        self.begin()
+        self.search()
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = ShodanAPI(domain)
+    search.run()
+if __name__ == '__main__':
+    run('freebuf.com')

OneForAll/modules/search/so.py ADDED Viewed

@@ -0,0 +1,75 @@
+import time
+from common.search import Search
+class So(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'SoSearch'
+        self.addr = 'https://www.so.com/s'
+        self.limit_num = 640  # 限制搜索条数
+        self.per_page_num = 10  # 默认每页显示10页
+    def search(self, domain, filtered_subdomain=''):
+        """
+        发送搜索请求并做子域匹配
+        :param str domain: 域名
+        :param str filtered_subdomain: 过滤的子域
+        """
+        page_num = 1
+        while True:
+            time.sleep(self.delay)
+            self.header = self.get_header()
+            self.proxy = self.get_proxy(self.source)
+            word = 'site:.' + domain + filtered_subdomain
+            payload = {'q': word, 'pn': page_num}
+            resp = self.get(url=self.addr, params=payload)
+            subdomains = self.match_subdomains(resp, fuzzy=False)
+            if not self.check_subdomains(subdomains):
+                break
+            self.subdomains.update(subdomains)
+            page_num += 1
+            # 搜索页面没有出现下一页时停止搜索
+            if '<a id="snext"' not in resp.text:
+                break
+            # 搜索条数限制
+            if self.page_num * self.per_page_num >= self.limit_num:
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        self.begin()
+        self.search(self.domain)
+        # 排除同一子域搜索结果过多的子域以发现新的子域
+        for statement in self.filter(self.domain, self.subdomains):
+            self.search(self.domain, filtered_subdomain=statement)
+        # 递归搜索下一层的子域
+        if self.recursive_search:
+            for subdomain in self.recursive_subdomain():
+                self.search(subdomain)
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = So(domain)
+    search.run()
+if __name__ == '__main__':
+    run('mi.com')

OneForAll/modules/search/sogou.py ADDED Viewed

@@ -0,0 +1,72 @@
+from common.search import Search
+class Sogou(Search):
+    def __init__(self, domain):
+        Search.__init__(self)
+        self.domain = domain
+        self.module = 'Search'
+        self.source = 'SogouSearch'
+        self.addr = 'https://www.sogou.com/web'
+        self.limit_num = 1000  # 限制搜索条数
+    def search(self, domain, filtered_subdomain=''):
+        """
+        发送搜索请求并做子域匹配
+        :param str domain: 域名
+        :param str filtered_subdomain: 过滤的子域
+        """
+        self.page_num = 1
+        while True:
+            self.header = self.get_header()
+            self.proxy = self.get_proxy(self.source)
+            word = 'site:.' + domain + filtered_subdomain
+            payload = {'query': word, 'page': self.page_num,
+                       "num": self.per_page_num}
+            resp = self.get(self.addr, payload)
+            subdomains = self.match_subdomains(resp, fuzzy=False)
+            if not self.check_subdomains(subdomains):
+                break
+            self.subdomains.update(subdomains)
+            self.page_num += 1
+            # 搜索页面没有出现下一页时停止搜索
+            if '<a id="sogou_next"' not in resp.text:
+                break
+            # 搜索条数限制
+            if self.page_num * self.per_page_num >= self.limit_num:
+                break
+    def run(self):
+        """
+        类执行入口
+        """
+        self.begin()
+        self.search(self.domain)
+        # 排除同一子域搜索结果过多的子域以发现新的子域
+        for statement in self.filter(self.domain, self.subdomains):
+            self.search(self.domain, filtered_subdomain=statement)
+        # 递归搜索下一层的子域
+        if self.recursive_search:
+            for subdomain in self.recursive_subdomain():
+                self.search(subdomain)
+        self.finish()
+        self.save_json()
+        self.gen_result()
+        self.save_db()
+def run(domain):
+    """
+    类统一调用入口
+    :param str domain: 域名
+    """
+    search = Sogou(domain)
+    search.run()
+if __name__ == '__main__':
+    run('example.com')