Add files via upload

Maarckz · web-flow · commit ca23fac66e4f · 2021-12-13T09:23:44.000-03:00
diff --git a/ClientUDP.py b/ClientUDP.py
@@ -0,0 +1,17 @@
+import socket
+
+client = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
+try:
+    while True:
+        msg = input("Mensagem: ") + "\n"
+        client.sendto(msg.encode(), ("127.0.0.1", 4433))
+        data, sender = client.recvfrom(1024)
+        print(sender[0] + ": " + data.decode())
+        if data.decode() == "sair\n" or msg == "sair\n":
+            break
+
+    client.close()
+except Exception as error:
+    print("Erro de conexao")
+    print(error)
+    client.close()
diff --git a/DNSSubdomainBrute.py b/DNSSubdomainBrute.py
@@ -0,0 +1,28 @@
+import sys
+
+import dns.resolver
+
+resolver = dns.resolver.Resolver()
+
+try:
+	alvo = sys.argv[1]
+	wordlist = sys.argv[2]
+except:
+	print("Usage: python3 dnsbrute.py dominio wordlist.txt")
+	sys.exit()
+
+try:
+	with open(wordlist, "r") as arq:
+		subdominios = arq.read().splitlines()
+except:
+	print("Erro ao abrir arquivo")
+	sys.exit()
+
+for subdominio in subdominios:
+	try:
+		sub_alvo = "{}.{}".format(subdominio, alvo)
+		resultados = resolver.resolve(sub_alvo, "A")
+		for resultado in resultados:
+			print("{} -> {}".format(sub_alvo, resultado))
+	except:
+		pass
diff --git a/DirBrute.py b/DirBrute.py
@@ -0,0 +1,26 @@
+import sys
+
+import requests
+
+def brute(url, wordlist):
+    for word in wordlist:
+        try:
+            url_final = "{}/{}".format(url, word.strip())
+            response = requests.get(url_final)
+            code = response.status_code
+            if code != 404:
+                print("{} -- {}".format(url_final, code))
+        except KeyboardInterrupt:
+            sys.exit(0)
+        except Exception as error:
+            print(error)
+            pass
+
+
+if __name__ == "__main__":
+    url = sys.argv[1]
+    wordlist = sys.argv[2]
+
+    with open(wordlist, "r") as file:
+        wordlist = file.readlines()
+        brute(url, wordlist)
diff --git a/EmailFinder.py b/EmailFinder.py
@@ -0,0 +1,71 @@
+import sys
+import re 
+
+import requests
+from bs4 import BeautifulSoup
+
+TO_CRAWL = []
+CRAWLED = set()
+
+
+def request(url):
+    header = {"User-Agent": "Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0"}
+    try:
+        response = requests.get(url, headers=header)
+        return response.text
+    except KeyboardInterrupt:
+        sys.exit(0)
+    except:
+        pass
+
+
+#def get_emails(html):
+#    emails = []
+#    try:
+
+
+
+
+
+def get_links(html):
+    links = []
+    try:
+        soup = BeautifulSoup(html, "html.parser")
+        tags_a = soup.find_all("a", href=True)
+        for tag in tags_a:
+            link = tag["href"]
+            if link.startswith("http"):
+                links.append(link)
+
+        return links
+    except:
+        pass
+
+
+def crawl():
+    while 1:
+        if TO_CRAWL:
+            url = TO_CRAWL.pop()
+
+            html = request(url)
+            if html:
+                links = get_links(html)
+                if links:
+                    for link in links:
+                        if link not in CRAWLED and link not in TO_CRAWL:
+                            TO_CRAWL.append(link)
+
+                print("Crawling {}".format(url))
+
+                CRAWLED.add(url)
+            else:
+                CRAWLED.add(url)
+        else:
+            print("Done")
+            break
+
+
+if __name__ == "__main__":
+    url = sys.argv[1]
+    TO_CRAWL.append(url)
+    crawl()
diff --git a/IdentySQLi.py b/IdentySQLi.py
@@ -0,0 +1,44 @@
+import copy
+import sys
+from urllib import parse
+
+import requests
+
+
+def request(url):
+    headers = {"User-Agent":
+                   "Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0"}
+    try:
+        response = requests.get(url, headers=headers)
+        html = response.text
+        return html
+    except:
+        pass
+
+
+def is_vulnerable(html):
+    errors = ["mysql_fetch_array()",
+              "You have an error in your SQL syntax"]
+    for error in errors:
+        if error in html:
+            return True
+
+
+if __name__ == "__main__":
+    url = sys.argv[1]
+    url_parsed = parse.urlsplit(url)
+    params = parse.parse_qs(url_parsed.query)
+    for param in params.keys():
+        query = copy.deepcopy(params)
+        for c in "'\"":
+            query[param][0] = c
+            new_params = parse.urlencode(query, doseq=True)
+            url_final = url_parsed._replace(query=new_params)
+            url_final = url_final.geturl()
+            html = request(url_final)
+            if html:
+                if is_vulnerable(html):
+                    print("[ + ] {} parameter is vulnerable".format(param))
+                    quit()
+
+    print("NOT VULNERABLE")
diff --git a/ServerSSH.py b/ServerSSH.py
@@ -0,0 +1,18 @@
+import paramiko
+
+host = "127.0.0.1"
+user = "kali"
+passwd = "kali"
+
+client = paramiko.SSHClient()
+client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
+client.connect(host, username=user, password=passwd)
+
+while True:
+    stdin, stdout, stderr = client.exec_command(input("Comando: "))
+    for line in stdout.readlines():
+        print(line.strip())
+
+    erros = stderr.readlines()
+    if erros:
+        print(erros)
diff --git a/ServerTCP.py b/ServerTCP.py
@@ -0,0 +1,23 @@
+import socket
+
+server = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+
+file = open("output.txt", "w")
+
+try:
+    server.bind(("0.0.0.0", 4466))
+    server.listen(5)
+    print("Listening...")
+
+    client_socket, address = server.accept()
+    print("Received from: " + address[0])
+
+    data = client_socket.recv(1024).decode()
+
+    file.write(data)
+
+    server.close()
+except Exception as error:
+    print("Erro: ", error)
+    server.close()
+
diff --git a/WebCrawler.py b/WebCrawler.py
@@ -0,0 +1,62 @@
+import sys
+
+import requests
+from bs4 import BeautifulSoup
+
+TO_CRAWL = []
+CRAWLED = set()
+
+
+def request(url):
+    header = {"User-Agent": "Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0"}
+    try:
+        response = requests.get(url, headers=header)
+        return response.text
+    except KeyboardInterrupt:
+        sys.exit(0)
+    except:
+        pass
+
+
+def get_links(html):
+    links = []
+    try:
+        soup = BeautifulSoup(html, "html.parser")
+        tags_a = soup.find_all("a", href=True)
+        for tag in tags_a:
+            link = tag["href"]
+            if link.startswith("http"):
+                links.append(link)
+
+        return links
+    except:
+        pass
+
+
+def crawl():
+    while 1:
+        if TO_CRAWL:
+            url = TO_CRAWL.pop()
+
+            html = request(url)
+            if html:
+                links = get_links(html)
+                if links:
+                    for link in links:
+                        if link not in CRAWLED and link not in TO_CRAWL:
+                            TO_CRAWL.append(link)
+
+                print("Crawling {}".format(url))
+
+                CRAWLED.add(url)
+            else:
+                CRAWLED.add(url)
+        else:
+            print("Done")
+            break
+
+
+if __name__ == "__main__":
+    url = sys.argv[1]
+    TO_CRAWL.append(url)
+    crawl()
