michaelstott / crlf-injection-scanner Goto Github PK
View Code? Open in Web Editor NEWCommand line tool for testing CRLF injection on a list of domains.
crlf-injection-scanner's People
Stargazers
Watchers
Forkers
ladyleet1337 random-robbie crypto-breaker anon0ps conanjun passtion jayaramyalla d1pakda5 fatinsourav oviking123 exploitprotocol lopseg monkeynika streaak 0xfatty bbhunter shahid1996 gopinath6 affilares thanhuutuan vishnurajkv mmg1 client-side-injection-tools try3hacker pentest-tools premhcz 5l1v3r1 fork-tools sk3lk0 cocoh-23 projectzerodays polling-repo-continua the-taj hollow667 an0nym0u5101 th3cyb3rc0p marcelodias1806 crackercat deepanjalkumar righteousgambit r3curs1v3-pr0xy elamaran619 fdlucifer naveen12 subzer0-cpu hartl3y94 darkoneiroi adelittle scriptkkiddie madusec haka110 dalaho-bangin dominfosec sayedmahmudcrlf-injection-scanner's Issues
Add an Argument to Hide Verbose
So I usually use this tool on a massive list of urls, like more than 2000 urls. I usually leave this tool running for hours.
It would be very helpful for us if there would be an argument that can help us in hiding the verbose and only showing the urls in which CRLF gets detected. Because it gets very hard to look for CRLF detection from a list of tens of thousands of generated URLS.
Thanks
Ability to supply headers for authenticated scans
Add Multi thread Support
Right Now tool is working slow when we supply list of domains , it will be great if multi thread can be add which will make tool faster.
Add Support for list of domains
Exception being thrown
hey dude,
was just testing this against my site that is protected by cloudflare.
Seeing it throwing this exception.
root@550958ca128c:/Sublist3r# python crlf_scan.py -i xsses.rocks.txt -o output.txt
Starting scan of domain www.xsses.rocks
Scanning http://www.xsses.rocks/.
Exception AttributeError: "'_SocketDuckForFd' object has no attribute '_closed'" in <bound method _SocketDuckForFd.__del__ of _SocketDuckForFd:8> ignored
Exception AttributeError: "'_SocketDuckForFd' object has no attribute '_closed'" in <bound method _SocketDuckForFd.__del__ of _SocketDuckForFd:9> ignored
Error occured when scanning with http protocol.
Scanning https://www.xsses.rocks/.
Exception AttributeError: "'_SocketDuckForFd' object has no attribute '_closed'" in <bound method _SocketDuckForFd.__del__ of _SocketDuckForFd:10> ignored
Exception AttributeError: "'_SocketDuckForFd' object has no attribute '_closed'" in <bound method _SocketDuckForFd.__del__ of _SocketDuckForFd:12> ignored
Error occured when scanning with https protocol.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.