gwen001 / pentest-tools Goto Github PK
View Code? Open in Web Editor NEWA collection of custom security tools for quick needs.
A collection of custom security tools for quick needs.
I try to use smuggler.py with some of the subdomain assets *.shopify.com, e.g.: https://partners.shopify.com but always got: Socket is not connected
, why? Any workarounds? But, perfect work with any PortSwigger's labs, e.g.: https://portswigger.net/web-security/request-smuggling/lab-basic-cl-te
Hello Gwen
Thank you so much for your repository , I wanted to try the testall.sh
and it says that testxss command not found
Maybe testxss
is an alias you had locally
So please git push
it to this repo
Regards
sudo python3 smuggler.py -u https://abc.com
Traceback (most recent call last):
File "smuggler.py", line 22, in
from colored import fg, bg, attr
ModuleNotFoundError: No module named 'colored'
This error is showing when I was trying to run this command.
Dear ,
I tried to use crtsh.php script but its not working and giving me error like
Warning: file_get_contents(https://crt.sh/?q=%25.example.com): failed to open stream: HTTP request failed! HTTP/1.1 503 Service Unavailable
in
/root/pentest-tools/crtsh.php on line 49
Can smuggler be run on MacOS instead of Linux?
Cool
Bbb
Hi @gwen001,
Really great work! I really appreciate the project and the efforts you have put into it. We would like to use one of the scripts from the project (https://github.com/gwen001/pentest-tools/blob/master/graphql-introspection-analyzer.py) for a commercial training online/classroom. So, I just wanted to clarify, if we acknowledge the source, would that be sufficient and covered under the terms of use?
i have problem who to use this tool i do python3 graphql-introspection-analyzer.py https://www.exmaple.com/graphql?query={__schema{queryType{name},mutationType{name},subscriptionType{name},types{...FullType},directives{name,description,locations,args{...InputValue}}}},fragment%20FullType%20on%20__Type{kind,name,description,fields(includeDeprecated:true){name,description,args{...InputValue},type{...TypeRef},isDeprecated,deprecationReason},inputFields{...InputValue},interfaces{...TypeRef},enumValues(includeDeprecated:true){name,description,isDeprecated,deprecationReason},possibleTypes{...TypeRef}},fragment%20InputValue%20on%20__InputValue{name,description,type{...TypeRef},defaultValue},fragment%20TypeRef%20on%20__Type{kind,name,ofType{kind,name,ofType{kind,name,ofType{kind,name,ofType{kind,name,ofType{kind,name,ofType{kind,name,ofType{kind,name}}}}}}}}
and i found error bash: syntax error near unexpected token `('
what is meaning Error: introspection file not found!
Why am I getting this error in smuggler.py? can you please help me out to resolve this issue?
Hello Gwendal, First of all Thanks for the awesome scripts. I really loved your work. I am using your scripts very often. But, Now cloudflare-origin-ip.py scripts is not working with python3. I am receiving below error with python3.
Traceback (most recent call last):
File "cloudflare-origin-ip.py", line 17, in <module>
from urlparse import urlparse
ModuleNotFoundError: No module named 'urlparse'
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.