webarx-security / wpbullet Goto Github PK

When I want to run the script by python wpbullet.py, I got this error:
Traceback (most recent call last):
File "wpbullet.py", line 2, in
from core import scanner
File "/home/root/Desktop/wpbullet/core/scanner.py", line 51
print('Checked files: ' + str(count_files), end="\r")
^
SyntaxError: invalid syntax

Have error to install in debian 8, with phyton 3 no import scanner

https://cl.ly/2ccf487c9b6c

We decided to use wpBullet with GitHub Actions here on NextPress but the exit code is always 0, even when vulnerabilities were found. This makes the tests pass when they shouldn't.

I'll send a PR soon that changes this behavior, exiting with code 1 when any vulnerability is found.

F:\wpbullet>python wpbullet.py --path="F:\wpen"
raceback (most recent call last):

File "wpbullet.py", line 2, in
from core import scanner
File "F:\wpbullet\core\scanner.py", line 52
print('Checked files: ' + str(count_files), end="\r")
^
SyntaxError: invalid syntax

Your tool/software has been inventoried on Rawsec's CyberSecurity Inventory.

https://inventory.rawsec.ml/tools.html#wpBullet

What is Rawsec's CyberSecurity Inventory?

An inventory of tools and resources about CyberSecurity. This inventory aims to help people to find everything related to CyberSecurity.

• Open source: Every information is available and up to date. If an information is missing or deprecated, you are invited to (help us).
• Practical: Content is categorized and table formatted, allowing to search, browse, sort and filter.
• Fast: Using static and client side technologies resulting in fast browsing.
• Rich tables: search, sort, browse, filter, clear
• Fancy informational popups
• Badges / Shields
• Static API
• Twitter bot

More details about features here.

Note: the inventory is a FLOSS (Free, Libre and Open-Source Software) project.

Why?

• Specialized websites: Some websites are referencing tools but additional information is not available or browsable. Make additional searches take time.
• Curated lists: Curated lists are not very exhaustive, up to date or browsable and are very topic related.
• Search engines: Search engines sometimes does find nothing, some tools or resources are too unknown or non-referenced. These is where crowdsourcing is better than robots.

Why should you care about being inventoried?

Mainly because this is giving visibility to your tool, more and more people are using the Rawsec's CyberSecurity Inventory, this helps them find what they need.

Badges

The badge shows to your community that your are inventoried. This also shows you care about your project and want it growing, that your tool is not an abandonware.

Feel free to claim your badge here: http://inventory.rawsec.ml/features.html#badges, it looks like that , but there are several styles available.

Want to thank us?

If you want to thank us, you can help make the project better known by tweeting about it! For example:

So what?

That's all, this message is just to notify you if you care.

I'm running as python3. Scanning fails. colorama is installed.

Traceback (most recent call last):
  File "wpbullet.py", line 2, in <module>
    from core import scanner
  File "/home/linuxlite/Documents/wpbullet/core/scanner.py", line 3, in <module>
    from core import passive_check
  File "/home/linuxlite/Documents/wpbullet/core/passive_check.py", line 2, in <module>
    from colorama import Fore
ModuleNotFoundError: No module named 'colorama'

I am not sure if it is a valid vulnerability. Can you please explain to me the real impact? Or is there any doc where I can refer all the Vulnerability explanations.

Hi,

Have you considered adding a standard output format?

https://github.com/microsoft/sarif-tutorials

I am confused about the existing modules.
It contains "require_once" functions for executing code. And "show_source" functions that only read files.
They don't seem to be the same vulnerability