GithubHelp home page GithubHelp logo

sourceleakhacker's Introduction

Description

SourceLeakHacker is a muilt-threads web directories scanner.

Installation

pip install -r requirements.txt

Usage 

usage: SourceLeakHacker.py [options]

optional arguments:
  -h, --help            show this help message and exit
  --url URL             url to scan, eg: 'http://127.0.0.1/'
  --urls URLS           file contains urls to scan, one line one url.
  --scale {full,tiny}   build-in dictionary scale
  --output OUTPUT       output folder, default: result/YYYY-MM-DD hh:mm:ss
  --threads THREADS, -t THREADS
                        threads numbers, default: 4
  --timeout TIMEOUT     HTTP request timeout
  --level {CRITICAL,ERROR,WARNING,INFO,DEBUG}, -v {CRITICAL,ERROR,WARNING,INFO,DEBUG}
                        log level
  --version, -V         show program's version number and exit

Example

$ python SourceLeakHacker.py --url=http://baidu.com --threads=4 --timeout=8
[302]   0       3.035766        text/html; charset=iso-8859-1   http://baidu.com/_/_index.php
[302]   0       3.038096        text/html; charset=iso-8859-1   http://baidu.com/_/__index.php.bak
...
[302]   0       0.063973        text/html; charset=iso-8859-1   http://baidu.com/_adm/_index.php
[302]   0       0.081672        text/html; charset=iso-8859-1   http://baidu.com/_adm/_index.php.bak
Result save in file: result/2020-02-27 07:07:47.csv

$ cat url.txt                 
http://baidu.com/
http://google.com/

$ python SourceLeakHacker.py --urls=url.txt --threads=4 --timeout=8
[302]   0       2.363600        text/html; charset=iso-8859-1   http://baidu.com/_/__index.php.bak
[302]   0       0.098417        text/html; charset=iso-8859-1   http://baidu.com/_adm/__index.php.bak
...
[302]   0       0.060524        text/html; charset=iso-8859-1   http://google.com/_adm/_index.php.bak
[302]   0       0.075042        text/html; charset=iso-8859-1   http://baidu.com/_adm/_index.php.back
Result save in file: result/2020-02-27 07:08:54.csv

Demo

screenshot-00.png screenshot-01.png screenshot-02.png

TODOs

  • Arguments parser.
  • Store scan result into csv file.
  • Support for multiple urls (from file).
  • Add help comments for every params.
  • Update Usage.
  • Adjust dictionary elements order systematically.
  • Change logger in order to suite for both windows and linux.
  • Add log level.
  • Update Screenshots.
  • Retry and avoid dead lock
  • Store scan result into sqlite database.
  • Download small url contents, then store them into sqlite database.

Known Bugs

  • CTRL C does not works on windows platform

sourceleakhacker's People

Contributors

dependabot[bot] avatar j1aled avatar nitesculucian avatar thelsa avatar wangyihang avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

cydoor nitesculucian bbsyaya 5up3rc av1080p err0rzz yaoyi2008 w2n1ck ph34n6x kingz40o rmanluo pygain11 threst hi0x0 interstellar2 lhlsec halono dm2333 lddp csatshell zihuocc hackcat yogistudio kuteminh11 changwng asifsadek commetoiii rpishgithub anthem9 natrix-fork c17abab lexchien futurebody attackgithub mehuiniji kdmin luton1507 h1iba1 khoalmh97 0day-l0gg3r 5l1v3r1 gscr10 seaflys hack404-007 lambang007 crackercat hariyopmail m3g4byt3 nerver88 hofiy boxhg fallensaint liufuqin0922 doanhnhq-uit nessastein freeworkaz alicemadreturn ssst0n3 dancer1234 kuustudio hieund12 xuehua312741499 dawnadvent j1aled phamtransang strawxs haosov zzzapzzz sashka3076 aviadhahami thelsa claimclone ctf-tool istoliving rfarrey qianniaoge optionalg mkdirlove korallin psychomad chaos-monkey-island yalonso7 xaeroborg tomyang9 blackc03r royzsec bicits-tlahuac sirduraeerecto pianomanx ceviktemp eagle9527 excloudx6 amirulandalib iq-scm rimaderlima scs-labrat secfb

sourceleakhacker's Issues

ImportError: No module named context 

git clone https://github.com/WangYihang/SourceLeakHacker.git
cd SourceLeakHacker
pip install -r requirments.txt
python SourceLeakHacker.py --url=http://server:port/ --threads=4 --timeout=8

之后出现:

Traceback (most recent call last):
  File "SourceLeakHacker.py", line 16, in <module>
    from lib.util import output
  File "/Users/boming/Downloads/SourceLeakHacker-3.0/lib/util/output.py", line 7, in <module>
    from lib.context import context
ImportError: No module named context

是我的环境问题吗

Old-style class defined 

7
8 screenLock = threading.Semaphore(value=1)
9
10 class ColorPrinter:
11     @staticmethod
12     def print_red_text(content):

In regards to line 10.

Why is this an issue?
In Python 2.x, old-style classes are defined by not inheriting from a base class or by inheriting from other old-style classes. New-style classes are defined by inheriting from class object or from other new-style classes.
Python 3.x supports only new-style classes; if no base class is specified on a class definition, the class implicitly inherits from object.
It is recommended to define only new-style classes, because they are properly integrated into Python's type system.

https://www.python.org/doc/newstyle/

Not mandatory and with no relevant improvement to the master but keep in mind for future 👍

SSL报错

请问有中文手册吗;还有爬虫模块SSL没处理好

Take Input From File

Hello,

Would be really cool if you could import a list of domains from a file to scan.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.