Plugin extension added + SVN files plugin

2017-03-05 18:34:36 +01:00 · 2017-03-05 18:34:36 +01:00 · 2567ba845b
parent fb2560f329
commit 2567ba845b
5 changed files with 63 additions and 2 deletions
--- a/engine/load_plugins.py
+++ b/engine/load_plugins.py
@ -1,2 +1,31 @@
 #!/usr/bin/python
-# -*- coding: utf-8 -*-
+# -*- coding: utf-8 -*-
+import requests
+import re
+import json
+import os
+import imp
+
+from wordpress import *
+
+class Load_Plugins:
+	plugin_folder = "./plugins"
+
+	def __init__(self, wordpress):
+		available_plugins = os.listdir(self.plugin_folder)
+
+		for plugins in available_plugins:
+			if not ".pyc" in plugins and not "__init__" in plugins:
+
+				# Find and load the package
+				name = plugins.replace('.py','')
+				f, file, desc = imp.find_module('plugins', ['.'])
+				pkg = imp.load_module('plugins', f, file, desc)
+				
+				# Find and load the plugin
+				f, file, desc = imp.find_module(name, pkg.__path__)
+				loaded = imp.load_module('plugins.' + name, f, file, desc)
+				
+				# Run the __init__
+				print notice('Plugin %s loaded.' % loaded.name)
+				loaded.__init__(wordpress)
--- a/main.py
+++ b/main.py
@ -27,7 +27,7 @@ if __name__ == "__main__":
 	parser.add_argument('--aggressive', action ='store_const', const='aggressive', dest='aggressive', default=False, help="Update the database")
 	parser.add_argument('--random-agent', action ='store_const', const='random_agent', dest='random_agent', default=False, help="Random User-Agent")
 	results = parser.parse_args()
-	
+
 	# Check wordpress url
 	if results.url != None:

@ -38,6 +38,7 @@ if __name__ == "__main__":
 		# Build a new wordpress object
 		wp = Wordpress(results.url, results.random_agent)
 		Scan_Engine(wp, results.aggressive)
+		Load_Plugins(wp)

 	else:
 		parser.print_help()
--- a/plugins/example.py
+++ b/plugins/example.py
--- a/plugins/example-plugin.py
+++ b/plugins/example-plugin.py
@ -0,0 +1,14 @@
+#!/usr/bin/python
+# -*- coding: utf-8 -*-
+
+# name        : Example Title
+# description : Example description 
+# author      : Wordpresscan Team
+
+import requests
+
+name = "Example-Plugin"
+
+def __init__(wordpress):
+	# INSERT CODE HERE!
+	return
--- a/plugins/svn-files.py
+++ b/plugins/svn-files.py
@ -0,0 +1,17 @@
+#!/usr/bin/python
+# -*- coding: utf-8 -*-
+
+# name        : SVN configuration files
+# description : Check for the file http://blog.domain.com/.svn/text-base/wp-config.php.svn-base
+# author      : Wordpresscan Team
+
+import requests
+
+name = "SVN configuration files"
+
+def __init__(wordpress):
+	payload = ".svn/text-base/wp-config.php.svn-base"
+	r = requests.get(wordpress.url + payload, headers={"User-Agent":wordpress.agent})
+
+	if "200" in str(r):
+		print "Wordpress configuration found from SVN !"