custom-scripts/web_enum.py at master · hackncode/custom-scripts · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
# Usage
# python enhanced_web_enum.py -d example.com --user-agent "MyCustomAgent/2.0" --no-ssl-verify


import argparse
import re
import requests
from termcolor import colored
from urllib.parse import urljoin

# Function to parse command-line arguments
def setup_parser():
    parser = argparse.ArgumentParser(description="Enhanced Web Enumeration Tool")
    parser.add_argument('-d', '--domain', required=True, help='Domain to enumerate')
    parser.add_argument('-o', '--output', default='', help='Base name for output files')
    parser.add_argument('-w', '--wordlist', help='Path to directory enumeration wordlist')
    parser.add_argument('-smap', '--sitemap', help='URL of sitemap if known')
    parser.add_argument('-u', '--userlist', help='Username wordlist for enumeration')
    parser.add_argument('--no-ssl-verify', action='store_true', help='Disable SSL verification')
    parser.add_argument('--user-agent', default='WebEnumTool/1.0', help='User Agent to use for requests')
    parser.add_argument('--proxy', help='Proxy to use for requests (format: http://user:pass@host:port)')
    return parser.parse_args()

# Function to make a GET request with specified options
def make_request(url, args):
    session = requests.Session()
    session.verify = not args.no_ssl_verify
    session.headers.update({'User-Agent': args.user_agent})
    if args.proxy:
        session.proxies.update({'http': args.proxy, 'https': args.proxy})
    return session.get(url)

# Function to process robots.txt
def process_robots_txt(domain_url, args):
    # [ ... existing robots.txt processing logic ... ]
    # Enhanced with make_request function
    pass

# Function to process sitemap.xml
def process_sitemap_xml(domain_url, args):
    # [ ... existing sitemap.xml processing logic ... ]
    # Enhanced with make_request function
    pass

# Function to perform directory enumeration
def directory_enumeration(domain_url, args):
    # [ ... existing directory enumeration logic ... ]
    # Enhanced with make_request function
    pass

# Function to search for email addresses
def search_emails(directories, args):
    # [ ... existing email search logic ... ]
    # Enhanced with make_request function
    pass

# Function to check for admin login page
def check_admin_login(domain_url, args):
    # [ ... existing admin login check logic ... ]
    # Enhanced with make_request function
    pass

# Main function
if __name__ == "__main__":
    args = setup_parser()

    # [ ... existing script logic ... ]
    # Enhanced with added functionalities and improved logic

    print(colored('All done!','green'))
    print(colored('Exiting...','red'))