Giter Club home page Giter Club logo

opendoor's Introduction

OWASP WEB Directory Scanner Twitter

Coverage Status Code Health Codacy Badge

Python Linux OSX Windows
2.6 Build Status ? Build status
2.7 Build Status ? Build status

This application scans the site directories and find all possible ways to login, index of/ dirs and entry points. The scanning is performed by the dictionary that came with the software. Possiblly to use own dictionaries. This software is written for informational purposes and is an open source product under the GPL license.

  • Current v3.0.31-rc (20.02.2017)
    • Directories - 33702
    • Subdomains - 101000

Testing of the software on the commercial systems and organizations is prohibited!

Alt text

Maintainers

Install Dependencies

pip install -r requirements.txt
chmod +x opendoor.py

Also, you have to install socksipy package if you'll use socks as proxy

apt-get install python-socksipy

Implements

  • multithreading control
  • scan's reports
  • directories scanner
  • subdomains scanner
  • HTTP(S) (PORT) support
  • Keep-alive long pooling
  • HTTP(S)/SOCKS proxies
  • dynamic request header
  • custom wordlst's prefixes
  • custom wordlists, proxies, ignore lists
  • debug levels (1-3)
  • analyze techniques
    • detect redirects
    • detect index of/ Apache
    • detect large files
    • certif required pages
  • randomization techniques
    • random user-agent per request
    • random proxy per request
    • wordlists shuffling

Changelog (last changes)

v3.0.31-rc (20.02.2017)

- update directories
- fixes for redirects

Basic usage

 python opendoor.py --host http://www.example.com

Help

usage: opendoor.py [-h] [--host HOST] [-p PORT] [-m METHOD] [-t THREADS]
                   [-d DELAY] [--timeout TIMEOUT] [-r RETRIES]
                   [--accept-cookies] [--debug DEBUG] [--tor]
                   [--torlist TORLIST] [--proxy PROXY] [-s SCAN] [-w WORDLIST]
                   [--reports REPORTS] [--random-agent] [--random-list]
                   [--prefix PREFIX] [-i] [--update] [--version] [--examples]

optional arguments:
  -h, --help            show this help message and exit

required named options:
  --host HOST           Target host (ip); --host http://example.com

Application tools:
  --update              Update from CVS
  --version             Get current version
  --examples            Examples of usage

Debug tools:
  --debug DEBUG         Debug level 1 - 3

Request tools:
  -p PORT, --port PORT  Custom port (Default 80)
  -m METHOD, --method METHOD
                        HTTP method (use HEAD as default)
  -d DELAY, --delay DELAY
                        Delay between request's threads
  --timeout TIMEOUT     Request timeout (30 sec default)
  -r RETRIES, --retries RETRIES
                        Max retries to reconnect (default 3)
  --accept-cookies      Accept and route cookies from responses
  --tor                 Using proxylist
  --torlist TORLIST     Path to external proxylist
  --proxy PROXY         Custom permanent proxy server
  --random-agent        Randomize user-agent per request

Sniff tools:
  -i, --indexof         Detect Apache Index of/

Stream tools:
  -t THREADS, --threads THREADS
                        Allowed threads

Wordlist tools:
  -s SCAN, --scan SCAN  Scan type scan=directories or scan=subdomains
  -w WORDLIST, --wordlist WORDLIST
                        Path to external wordlist
  --reports REPORTS     Scan reports (json,std,txt)
  --random-list         Shuffle scan list
  --prefix PREFIX       Append path prefix to scan host

Test

pip install  -r requirements-dev.txt
coverage run --source=src/ setup.py test

Contributors

If you like to contribute to the development of the project in that case pull requests are open for you. Also, you can suggest an ideas and create a task in my track list

Issues License: GPL v3 Say Thanks!

Documentation

opendoor's People

Watchers

FB avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.