Git Product home page Git Product logo

sentryssrf's Introduction

This tool is based on LinkFinder https://github.com/GerbenJavado/LinkFinder you can read more about this tool here

About sentrySSRF

Written in python, try to find sentry config on page or in sentry files by using regular expressions from LinkFinder and then check for blind SSRF in sentry.

Screenshots

sentrySSRF

Installation

sentrySSRF As LinkFinder supports Python 3.

$ git clone https://github.com/xawdxawdx/sentrySSRF.git
$ cd sentrySSRF
$ python setup.py install

Dependencies

sentrySSRF depends on the argparse and jsbeautifier Python modules. These dependencies can all be installed using pip.

$ pip3 install -r requirements.txt

Usage and Examples

  • Exact js url:

python3 sentrySSRF.py -i https://example.com/1.js

  • Input a domain to recursively parse all javascript located in a page to find config with sentry:

python3 sentrySSRF.py -i https://example.com/ -d

Final remarks

  • Thanks to GerbenJavado

sentrySSRF

sentryssrf's People

Contributors

xawdxawdx avatar qodana-bot avatar

Stargazers

avatar Ying xue avatar Y1Shui avatar 黄皮电耗子法克 avatar Anton Piskunov avatar avatar avatar 312701 avatar Tommy avatar avatar Weben-Chan avatar Ahmed helmy avatar avatar avatar hirenloong avatar wjljack avatar suifeng avatar avatar Shad0w8 avatar Tycho101 avatar o1iver.github.io avatar avatar 小狐狸FM avatar avatar taotao avatar ououover avatar Blyth He avatar cm avatar Md. Shahriar Alam Shaon avatar iak3ec avatar muuk avatar ATpiu avatar avatar 猫咪 avatar Aditya Raj Singh avatar avatar @WishJam avatar ol4three avatar avatar Li4n0 avatar Annevi avatar avatar avatar avatar Michael Cade avatar avatar avatar Iamsuperdeen avatar FoolishEddy avatar Antares avatar TeamsSix avatar Avi avatar Abdur Rofi avatar Alexander Knorr avatar Arbaz Hussain avatar imslowmist avatar avatar Kamil Vavra avatar Khaled Mohamed avatar mysticbinary avatar 22 avatar orleven avatar Yunus YILDIRIM avatar Fugitif avatar looooooooooop{{2*2}}<img/src=x> avatar avatar avatar

Watchers

James Cloos avatar Fugitif avatar avatar

Forkers

ethicalhackingplayground oviking123 slowmistio xxx266 shystartree hartl3y94 vlad752 james0479 jim2g manhinyeung taota1 pt001 lins-mdfk gysf666

sentryssrf's Issues

Error

Hi

I'm using your tool from Mac os and I get this error

Traceback (most recent call last):
File "sentrySSRF.py", line 333, in
endpoint = html.escape(endpoint["link"]).encode('ascii', 'ignore').decode('utf8')
AttributeError: 'module' object has no attribute 'escape'

Any help to fix it please? Thanks

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.