Another web vulnerabilities scanner, this extension works on Chrome and Opera

Go to file

swisskyrepo b55243b60a Page to display vulnerabilities - Only display URL		2016-12-26 16:00:57 +01:00
Plugin	Page to display vulnerabilities - Only display URL	2016-12-26 16:00:57 +01:00
Screens	First working commit - Basic Scans and bugs :)	2016-12-24 17:49:26 +01:00
Server	New XSS vector multicontext	2016-12-26 13:25:36 +01:00
.gitignore	.gitignore added - no more .pyc	2016-12-24 17:50:40 +01:00
README.md	Page to display vulnerabilities - Only display URL	2016-12-26 16:00:57 +01:00

README.md

Damn Web Scanner

Another web vulnerabilities scanner, this extension works on Chrome and Opera The extension is working in the background and will notify you if it finds any vulnerability

Currently it scans for:

SQL Injection
Cross Site Scripting
Local File Inclusion

Warnings : Do not use this extension for illegal purpose, the main goal of it is to simplify the life of bug hunters. It's a BETA version, many improvements will come don't worry

New features

Detect if the server is up
Start/Stop button
New XSS vectors, work in different contexts (JS var, JS function, inside HTML tag, outside HTML tag)
Basic page to list the vulnerabilities

TODO - Work in progress

ScanSQLTime/ScanSQLBlind
Should detect target in source code..
Should detect and work with POST requests
Export function for vulnerabilities
Add some functions from https://sergeybelove.ru/one-button-scan/result/3004e0b978f19e58e3239087d119742779e1efbc/
Deep and impact : args['url'],args['deep'],args['impact']
Command injection :&sleep 5&'"0&sleep 5&`'
Launch scan when a button is submitted

Install

You need to install and configure the server, it uses ghost and flask with gunicorn

pip install requests
pip install flask
pip install pyside
pip install ghost.py --pre
pip install gunicorn
sudo apt-get install gunicorn

If you have any trouble with Ghost you should have a look to the documentation : http://ghost-py.readthedocs.org/en/latest/

1 - The extension isn't packed, to use it go to chrome://extensions or opera://extensions then select "Load unpacked extension"

2 - Don't forget to launch the server

chmod +x ./launch
./launch

3 - Edit the server configuration in popup.js and background.js with your server's informations

var config_server = "http://127.0.0.1:8000";

4 - Browse the internet !

Thanks

Polyglot vector for SQL injections The Ultimate SQL Injection Payload
Polyglot vector for XSS injection 1 One vector to rule them all
Polyglot vector for XSS injection 2 Unleashing an Ultimate XSS Polyglot