swisskyrepo
/
Wordpresscan
mirror of https://github.com/swisskyrepo/Wordpresscan.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

HTTPS support - work even with bad https

pull/5/head
Swissky 2017-06-11 16:54:29 +02:00
parent 142cdc79a8
commit ce6b395733
2 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
engine/fuzz.py
View File

@ -36,7 +36,7 @@ class Fuzz_Engine:
for component in data: for component in data:
component = component.strip() component = component.strip()
iter_aggressive += 1 iter_aggressive += 1
http_client.fetch(wordpress.url + component, aggressive_request_component, method='HEAD') == True http_client.fetch(wordpress.url + component, aggressive_request_component, method='HEAD', validate_cert=False) == True
ioloop.IOLoop.instance().start() ioloop.IOLoop.instance().start()
@ -59,7 +59,7 @@ class Fuzz_Engine:
for theme in data: for theme in data:
theme = theme.strip() theme = theme.strip()
iter_aggressive += 1 iter_aggressive += 1
http_client.fetch(wordpress.url + theme + "style.css", aggressive_request_plugins, method='HEAD') == True http_client.fetch(wordpress.url + theme + "style.css", aggressive_request_plugins, method='HEAD', validate_cert=False) == True
ioloop.IOLoop.instance().start() ioloop.IOLoop.instance().start()
@ -81,7 +81,7 @@ class Fuzz_Engine:
for plugin in data: for plugin in data:
plugin = plugin.strip() plugin = plugin.strip()
iter_aggressive += 1 iter_aggressive += 1
http_client.fetch(wordpress.url + plugin, aggressive_request_plugins, method='HEAD') == True http_client.fetch(wordpress.url + plugin, aggressive_request_plugins, method='HEAD', validate_cert=False) == True
ioloop.IOLoop.instance().start() ioloop.IOLoop.instance().start()

6
engine/scan.py
View File

@ -40,7 +40,7 @@ class Scan_Engine:
description : detect the version of WordPress based on the generator tag in index.php/feed/ description : detect the version of WordPress based on the generator tag in index.php/feed/
""" """
def fingerprint_wp_version_feed_based(self, wordpress): def fingerprint_wp_version_feed_based(self, wordpress):
r = requests.get(wordpress.url + "index.php/feed", headers={"User-Agent":wordpress.agent}).text r = requests.get(wordpress.url + "index.php/feed", headers={"User-Agent":wordpress.agent}, verify=False).text
regex = re.compile('generator>https://wordpress.org/\?v=(.*?)<\/generator') regex = re.compile('generator>https://wordpress.org/\?v=(.*?)<\/generator')
match = regex.findall(r) match = regex.findall(r)
if match != []: if match != []:
@ -207,7 +207,7 @@ class Scan_Engine:
http_client = httpclient.AsyncHTTPClient() http_client = httpclient.AsyncHTTPClient()
for plugin in data.keys(): for plugin in data.keys():
iter_aggressive += 1 iter_aggressive += 1
http_client.fetch(wordpress.url+'/wp-content/themes/' + plugin, aggressive_request_themes, method='HEAD') == True http_client.fetch(wordpress.url+'/wp-content/themes/' + plugin, aggressive_request_themes, method='HEAD', validate_cert=False) == True
ioloop.IOLoop.instance().start() ioloop.IOLoop.instance().start()
@ -228,7 +228,7 @@ class Scan_Engine:
http_client = httpclient.AsyncHTTPClient() http_client = httpclient.AsyncHTTPClient()
for plugin in data.keys(): for plugin in data.keys():
iter_aggressive += 1 iter_aggressive += 1
http_client.fetch(wordpress.url+'/wp-content/plugins/' + plugin, aggressive_request_plugins, method='HEAD') == True http_client.fetch(wordpress.url+'/wp-content/plugins/' + plugin, aggressive_request_plugins, method='HEAD', validate_cert=False) == True
ioloop.IOLoop.instance().start() ioloop.IOLoop.instance().start()