swisskyrepo
/
DamnWebScanner
mirror of https://github.com/swisskyrepo/DamnWebScanner.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Another web vulnerabilities scanner, this extension works on Chrome and Opera
11 Commits
1 Branch
0 Tags
1.4 MiB
Python 41.9%
JavaScript 36.5%
HTML 19.8%
Dockerfile 1.8%
 
 
 
 
Go to file
swisskyrepo 71b589dbb7 Bug fixes - Button Start/Stop sync + logo for notif 2016-12-27 17:39:14 +01:00
Plugin Bug fixes - Button Start/Stop sync + logo for notif 2016-12-27 17:39:14 +01:00
Screens Update results screenshot 2016-12-27 14:04:03 +01:00
Server TimeBased SQL injection scanner 2016-12-27 14:00:55 +01:00
.gitignore .gitignore added - no more .pyc 2016-12-24 17:50:40 +01:00
README.md Bug fixes - Button Start/Stop sync + logo for notif 2016-12-27 17:39:14 +01:00

README.md

Damn Web Scanner

Another web vulnerabilities scanner, this extension works on Chrome and Opera The extension is working on the background and will notify you if it finds any vulnerability

Currently it scans for:

  • SQL Injection
  • Cross Site Scripting
  • Local File Inclusion

Warnings : Do not use this extension for illegal purpose, the main goal of it is to simplify the life of bug hunters. It's a BETA version, many improvements will come don't worry

Install

You need to install and configure the server, it uses ghost and flask with gunicorn

pip install requests
pip install flask
pip install pyside
pip install ghost.py --pre
pip install gunicorn
sudo apt-get install gunicorn

If you have any trouble with Ghost you should have a look to the documentation : http://ghost-py.readthedocs.org/en/latest/

1 - The extension isn't packed, to use it go to chrome://extensions or opera://extensions then select "Load unpacked extension"

2 - Don't forget to launch the server

chmod +x ./launch
./launch

3 - Edit the server configuration in popup.js and background.js with your server's informations

var config_server = "http://127.0.0.1:8000";

4 - Browse the internet ! (Don't forget to start the extension by clicking the 'START' button)

New features

  • Detect if the server is up
  • Start/Stop button
  • New XSS vectors, work in different contexts (JS var, JS function, inside HTML tag, outside HTML tag)
  • Basic page to list the vulnerabilities URL and TYPE
  • Time based SQLi scanner using polyglot vectors (MySQL, SQLite, Oracle, Postgresql, SQL Server)
  • New logo for the extension

TODO - Work in progress

  • Should detect target in source code.. (list of targets, then launch scan)
  • Should detect and work with POST requests
  • Export function for vulnerabilities
  • Add some functions from https://sergeybelove.ru/one-button-scan/result/3004e0b978f19e58e3239087d119742779e1efbc/
  • Deep and impact : args['url'],args['deep'],args['impact']
  • Command injection :&sleep 5&'"0&sleep 5&`'
  • Launch scan when a button is clicked/ form submitted / page opened via URL
  • LFI scan improvement with data: wrapper

Thanks