Skip to content
/ info Public

This project built with Python to get information about websites.

Notifications You must be signed in to change notification settings

foss-dev/info

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

SITE INFORMATION TOOL

This project built with Python is to get information about websites.

Status: Website development

Endpoints

All endpoints will return json format.

/dns

http verbs: ['POST']

Parameters: ['domain']

It will show dns records. You can extend record types like below:

m_dns.types.append('AAAA')

/port

http verbs: ['POST']

Parameters: ['domain', 'port']

It will show port status of domain you declared.

/find_admin

http verbs: ['POST']

Parameters: ['domain']

It will try to find admin panel of website. You can extend panel endpoints like below:

m_admin_finder.endpoints.append('myadmin')

/site_info

http verbs: ['POST']

Parameters: ['domain']

It will show site info for example:

  • cms (Eg: WordPress, Drupal, Discourse)
  • status_code
  • title
  • scripts
  • css_list
  • links (tag)
  • meta

/cve

http verbs: ['POST']

Parameters: ['keyword']

It will show CVE results from NVD. Return type will be json like below (search for linux):

{
    "page_count": 234,
    "total": "4,675"
},
{
    "description": "A vulnerability has been identified in Siveillance VMS Video for Android (All versions < V12.1a (2018 R1)), Siveillance VMS Video for iOS (All versions < V12.1a (2018 R1)). Improper certificate validation could allow an attacker in a privileged network position to read data from and write data to the encrypted communication channel between the app and a server. The security vulnerability could be exploited by an attacker in a privileged network position which allows intercepting the communication channel between the affected app and a server (such as Man-in-the-Middle). Furthermore, an attacker must be able to generate a certificate that results for the validation algorithm in a checksum identical to a trusted certificate. Successful exploitation requires no user interaction. The vulnerability could allow reading data from and writing data to the encrypted communication channel between the app and a server, impacting the communication's confidentiality and integrity. At the time of advisory publication no public exploitation of this security vulnerability was known. Siemens confirms the security vulnerability and provides mitigations to resolve the security issue.",
    "publish": "May 03, 2018; 09:29:00 AM -04:00",
    "severity": "\r\n                            (not available)\r\n                        ",
    "title": "CVE-2018-4849",
    "url": "/vuln/detail/CVE-2018-4849"
},

/ip

It will show your local and public IP address.

http verbs: ['POST']

Parameters: no

/pwned

It will show have you been pwned.

http verbs: ['POST']

Parameters: ['type => have_i_been_pwned, hacked_emails, password', 'keyword => mail or plaintext password']

/password

It will generate secure password for you.

http verbs: ['POST']

Parameters: ['lower => 1 or 0', 'upper => 1 or 0', 'numeric => 1 or 0', 'other => 1 or 0', 'all => 1 or 0'], ['length => default = 16, optional']

/ip_block

It will return ip block records with status true and false.

http verbs: ['POST']

Parameters: ['ip', 'min = 0', 'max = 32']

/mybb_plugin_scanner

It will scan the MyBB plugins to report possible exploits.

http verbs: ['POST']

Parameters: ['domain']

To-Do

  • Improvement for admin finder
  • Improvement for site info
  • Front-end
  • Technology checker (Eg: wordpress, ghost, joomla)
  • CVE Search
  • IP Information
  • Have I been Pwned?
  • Password Generator
  • IP BLock Scanner
  • New ideas

About

This project built with Python to get information about websites.

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages