From cbbdf16c927bc3aa0cf7378d68515e43471dbbb7 Mon Sep 17 00:00:00 2001 From: anouarbensaad Date: Sun, 17 Nov 2019 01:19:42 +0100 Subject: [PATCH] ==VULNX MODE== | Fix Screen listing dorks. --- cli.py | 130 ++++++++++-- logs/Dorks/2019-11-16-183149-Dorks.txt | 7 - logs/injected.txt | 1 - modules/dorksEngine.py | 266 +++++++++---------------- 4 files changed, 203 insertions(+), 201 deletions(-) delete mode 100644 logs/Dorks/2019-11-16-183149-Dorks.txt delete mode 100644 logs/injected.txt diff --git a/cli.py b/cli.py index 6fe0525..d33ec9a 100644 --- a/cli.py +++ b/cli.py @@ -1,4 +1,5 @@ import sys + import time import os import re @@ -79,7 +80,7 @@ def _url_action_help(): print(""" Command Description -------- ------------- - ? Help menu + help/? Show this help menu. timeout set timeout ports scan ports domain get domains & sub domains @@ -87,6 +88,9 @@ def _url_action_help(): web info get web info dump dns dump dns get sub domains [mx-server..] run exploit run exploits corresponding to cms + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -97,9 +101,12 @@ def _dorks_action_help(): print(""" Command Description -------- ------------- - ? Help menu + help/? Show this help menu. list list dorks set dork set exploit name + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -108,10 +115,13 @@ def _dorks_setdork_help(): print(""" Command Description -------- ------------- - ? Help menu + help/? Show this help menu. pages set num page output output file. - run search web with specified dork + run search web with specified dork + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -120,9 +130,12 @@ def _dorks_setdork_page_help(): print(""" Command Description -------- ------------- - ? Help menu + help/? Show this help menu. output output file. - run search web with specified dork + run search web with specified dork + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -131,9 +144,12 @@ def _dorks_setdork_output_help(): print(""" Command Description -------- ------------- - ? Help menu + help/? Show this help menu. pages set num page - run search web with specified dork + run search web with specified dork + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -142,8 +158,11 @@ def _dorks_setdork_page_output_help(): print(""" Command Description -------- ------------- - ? Help menu - run search web with specified dork + help/? Show this help menu. + run search web with specified dork + clear/cls clear the vulnx screen + history Display command-line most important history from the beginning. + variables Prints all previously specified variables. back move back from current context """) @@ -187,6 +206,16 @@ def setPage(page): if page: return int(page) + @staticmethod + def setOutput(directory): + output=r'^output (\w+$)' + try: + rep=re.search(re.compile(output),directory).group(1) + except AttributeError: # No match is found + rep=re.search(re.compile(output),directory) + if rep: + return rep + @property def getUrl(self,pattern): url_search=r'^set url (.+)' @@ -197,48 +226,109 @@ def getUrl(self,pattern): if url: return url#ParseURL(url) + def variable(self): + print("a") + def setdorkCLI(self,cmd_interpreter): + # REGEX + + output=re.compile(r'^output \w+$') + page=re.compile(r'^page \d+$') + dorkname=re.compile(r'^set dork .+') + '''SET DORK VARIABLE''' + while True: - dorkname=re.compile(r'^set dork .+') cmd_interpreter=input("%s%svulnx%s%s (%sDorks%s)> %s" %(bannerblue2,W_UL,end,W,B,W,end)) if cmd_interpreter == 'back': break if cmd_interpreter == 'list': '''SET DORK LIST''' + print('\n%s[*]%s Listing dorks name..' %(B,end)) from modules.dorksEngine import DorkList as DL DL.dorkslist() - + if cmd_interpreter=='clear' or cmd_interpreter=='cls': + Cli._clearscreen() + if cmd_interpreter=='exit': + sys.exit() + if cmd_interpreter == 'help' or cmd_interpreter == '?': + Helpers._dorks_action_help() + '''SET DORK NAME.''' - elif dorkname.search(cmd_interpreter): + + if dorkname.search(cmd_interpreter): while True: cmd_interpreter_wp=input("%s%svulnx%s%s (%sDorks-%s%s)> %s" %(bannerblue2,W_UL,end,W,B,Cli.getDork(cmd_interpreter),W,end)) - page=re.compile(r'^page \d+$') - + '''SET PAGE VARIABLE.''' + if page.search(cmd_interpreter_wp): while True: cmd_interpreter_wp_page=input("%s%svulnx%s%s (%sDorks-%s-%s%s)> %s" %(bannerblue2,W_UL,end,W,B,Cli.getDork(cmd_interpreter),Cli.setPage(cmd_interpreter_wp),W,end)) + + if output.search(cmd_interpreter_wp_page): + while True: + cmd_interpreter_wp_page_output=input("%s%svulnx%s%s (%sDorks-%s-%s%s)> %s" %(bannerblue2,W_UL,end,W,B,Cli.getDork(cmd_interpreter),Cli.setPage(cmd_interpreter_wp),W,end)) + + if cmd_interpreter_wp_page_output=='run': + print('\n') + from modules.dorksEngine import Dorks as D + D.searchengine(Cli.getDork(cmd_interpreter),headers,Cli.setOutput(cmd_interpreter_wp),Cli.setPage(cmd_interpreter_wp)) + if cmd_interpreter_wp_page_output=='back': + break + if cmd_interpreter_wp_page_output=='help' or cmd_interpreter_wp_page_output=='?': + Helpers._dorks_setdork_page_output_help() + if cmd_interpreter_wp_page_output=='clear' or cmd_interpreter_wp_page_output=='cls': + Cli._clearscreen() + if cmd_interpreter_wp_page_output=='exit': + sys.exit() + if cmd_interpreter_wp_page=='run': print('\n') from modules.dorksEngine import Dorks as D D.searchengine(Cli.getDork(cmd_interpreter),headers,output_dir,Cli.setPage(cmd_interpreter_wp)) if cmd_interpreter_wp_page=='back': break - + if cmd_interpreter_wp_page=='help' or cmd_interpreter_wp_page=='?': + Helpers._dorks_setdork_page_help() + if cmd_interpreter_wp_page=='clear' or cmd_interpreter_wp_page=='cls': + Cli._clearscreen() + if cmd_interpreter_wp_page=='exit': + sys.exit() + + '''SET OUTPUT VARIABLE.''' + + if output.search(cmd_interpreter_wp): + while True: + cmd_interpreter_wp_output=input("%s%svulnx%s%s (%sDorks-%s%s)> %s" %(bannerblue2,W_UL,end,W,B,Cli.getDork(cmd_interpreter),W,end)) + if cmd_interpreter_wp_output=='run': + print('\n') + from modules.dorksEngine import Dorks as D + D.searchengine(Cli.getDork(cmd_interpreter),headers,Cli.setOutput(cmd_interpreter_wp),numberpage) + if cmd_interpreter_wp_output=='back': + break + if cmd_interpreter_wp_output=='clear' or cmd_interpreter_wp_output=='cls': + Cli._clearscreen() + if cmd_interpreter_wp_output=='exit': + sys.exit() + if cmd_interpreter_wp_output=='help' or cmd_interpreter_wp_output=='?': + Helpers._dorks_setdork_output_help() + if cmd_interpreter_wp=='run': print('\n') from modules.dorksEngine import Dorks as D D.searchengine(Cli.getDork(cmd_interpreter),headers,output_dir,numberpage) - if cmd_interpreter_wp=='back': break - - if cmd_interpreter == 'help' or cmd_interpreter == '?': - Helpers._dorks_action_help() + if cmd_interpreter_wp=='help' or cmd_interpreter_wp=='?': + Helpers._dorks_setdork_help() + if cmd_interpreter_wp=='clear' or cmd_interpreter_wp=='cls': + Cli._clearscreen() + if cmd_interpreter_wp=='exit': + sys.exit() diff --git a/logs/Dorks/2019-11-16-183149-Dorks.txt b/logs/Dorks/2019-11-16-183149-Dorks.txt deleted file mode 100644 index 4a73eaf..0000000 --- a/logs/Dorks/2019-11-16-183149-Dorks.txt +++ /dev/null @@ -1,7 +0,0 @@ -stccatholic.org -www.sciteex.com -pt-gst.com -www.bms.bg -www.genevievederathe.fr -tslargentina.org -prokartindoor.com diff --git a/logs/injected.txt b/logs/injected.txt deleted file mode 100644 index b1b7161..0000000 --- a/logs/injected.txt +++ /dev/null @@ -1 +0,0 @@ -init diff --git a/modules/dorksEngine.py b/modules/dorksEngine.py index 199af69..106939f 100644 --- a/modules/dorksEngine.py +++ b/modules/dorksEngine.py @@ -217,191 +217,111 @@ class DorkList(): @staticmethod def dorkslist(): - print (" %s lists of existing dorks" % (info)) - print ("""%s - +−−−−−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−+ - | WordPress | Joomla | Drupal | Prestashop | Lokomedia | - +−−−−−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−−−−−−−−−−−−+−−−−−−−−−−−−−−−−−+%s - | blaze | comjce | | columnadverts | | - | catpro | comfabrik | | soopabanners | | - | cherry | comjdownloads | | vtslide | | - | dm | comfoxcontact | | simpleslideshow | | - | fromcraft | | | productpageadverts | | - | synoptic | | | productpageadvertsb | | - | shop | | | jro_homepageadvertise | | - | revslider | | | attributewizardpro | | - | adsmanager | | | oneattributewizardpro | | - | inboundiomarketing | | | attributewizardpro_old | | - | wysija | | | attributewizardpro_x | | - | powerzoomer | | | advancedslider | | - | showbiz | | | cartabandonmentpro | | - | jobmanager | | | cartabandonmentpro_old | | - | injection | | | videostab | | - | thumbslider | | | wg24themeadministration | | - | | | | fieldvmegamenu | | - | | | | wdoptionpanel | | - | | | | pk_flexmenu | | - | | | | pk_vertflexmenu | | - | | | | nvn_export_orders | | - | | | | tdpsthemeoptionpanel | | - | | | | masseditproduct | | - +----------------------+-----------------+------------------+----------------------------+-----------------+ - - """ %(W,end)) - print ('------------------------------------------------') + print(""" + %sWordPress Joomla Prestashop + --------- ------ -----------%s + blaze comjce columnadverts + catpro comfabrik soopabanners + cherry comjdownloads vtslide + dm comfoxcontact simpleslideshow + fromcraft productpageadverts + synoptic productpageadvertsb + shop jro_homepageadvertise + revslider attributewizardpro + adsmanager oneattributewizardpro + inboundiomarketing attributewizardpro_old + wysija attributewizardpro_x + powerzoomer advancedslider + showbiz cartabandonmentpro + jobmanager cartabandonmentpro_old + injection videostab + thumbslider wg24themeadministration + fieldvmegamenu + wdoptionpanel + pk_flexmenu + pk_vertflexmenu + nvn_export_orders + tdpsthemeoptionpanel + masseditproduct +"""%(W,end)) + + @staticmethod def wp_dorkTable(): - print(" %s lists of wordpress dorks" % (info)) - print("""%s - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | WordPress | - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | blaze | - | catpro | - | cherry | - | dm | - | fromcraft | - | synoptic | - | shop | - | revslider | - | adsmanager | - | inboundiomarketing | - | wysija | - | powerzoomer | - | showbiz | - | jobmanager | - | injection | - | thumbslider | - | | - +----------------------------+%s - """%(W,end)) - print ('------------------------------------------------') + print(""" + WordPress + --------- + blaze + catpro + cherry + dm + fromcraft + synoptic + shop + revslider + adsmanager + inboundiomarketing + wysija + powerzoomer + showbiz + jobmanager + injection + thumbslider + """) @staticmethod def joo_dorkTable(): - print(" %s lists of wordpress dorks" % (info)) - print("""%s - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | Joomla | - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | comjce | - | comfabrik | - | comjdownloads | - | comfoxcontact | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - +----------------------------+%s - """%(W,end)) - print ('------------------------------------------------') + print(""" + Joomla + ------ + comjce + comfabrik + comjdownloads + comfoxcontact + """) @staticmethod def ps_dorkTable(): - print(" %s lists of wordpress dorks" % (info)) - print("""%s - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | Prestashop | - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | columnadverts | - | soopabanners | - | vtslide | - | simpleslideshow | - | productpageadverts | - | productpageadvertsb | - | jro_homepageadvertise | - | attributewizardpro | - | oneattributewizardpro | - | attributewizardpro_old | - | attributewizardpro_x | - | advancedslider | - | cartabandonmentpro | - | cartabandonmentpro_old | - | videostab | - | wg24themeadministration | - | fieldvmegamenu | - | wdoptionpanel | - | pk_flexmenu | - | pk_vertflexmenu | - | nvn_export_orders | - | tdpsthemeoptionpanel | - | masseditproduct | - +----------------------------+%s - """%(W,end)) - print ('------------------------------------------------') + + print(""" + Prestashop + ----------- + columnadverts + soopabanners + vtslide + simpleslideshow + productpageadverts + productpageadvertsb + jro_homepageadvertise + attributewizardpro + oneattributewizardpro + attributewizardpro_old + attributewizardpro_x + advancedslider + cartabandonmentpro + cartabandonmentpro_old + videostab + wg24themeadministration + fieldvmegamenu + wdoptionpanel + pk_flexmenu + pk_vertflexmenu + nvn_export_orders + tdpsthemeoptionpanel + masseditproduct + """) @staticmethod def loko_dorkTable(): - print(" %s lists of wordpress dorks" % (info)) - print("""%s - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | Lokomedia | - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - +----------------------------+%s - """%(W,end)) - print ('------------------------------------------------') + print(""" + Lokomedia + ------ + """) @staticmethod def dru_dorkTable(): - print(" %s lists of wordpress dorks" % (info)) - print("""%s - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | Drupal | - +−−−−−−−−−−−−−−−−−−−−−−−−−−−−+ - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - | | - +----------------------------+%s - """%(W,end)) - print ('------------------------------------------------') \ No newline at end of file + print(""" + Drupal + ------ + """) \ No newline at end of file