在线时间:8:00-16:00
迪恩网络APP
随时随地掌握行业动态
扫描二维码
关注迪恩网络微信公众号
开源软件名称:allyshka/pwngitmanager开源软件地址:https://github.com/allyshka/pwngitmanager开源编程语言:Python 100.0%开源软件介绍:PwnGitManagerOverviewThis git manager helps during penetration testing process. When you found opened .git repository on perimeter. On company web site. What do you do next? Download all files from them by git-ripper scripts, I guess. But it's not always necessary, because repository can be huge and often you need only some files from it. Config files for example. Besides, many requests to the server (while downloading objects) can alert IDS. For that cases I wrote this tool. It's download only index file from repository and next you can search files, paths and then download and view only what you need. InstallationYou do not need special requirements for now. Only python 3 and python-telegram-bot if you want use telegram bot of course. UseIf you use Windows then install pyreadline
Tool can run in two modes: interactive and command interactive mode:
You can use URL with scheme http or https. You can add path to git (ex.: http://example.com/path/to/.git) or, if git folder in web root, you can use short URL (ex.: example.com)
You can use [TAB] for autocomplete paths. All getted files saves in data// folder by them actual paths in repository. command mode:In this mode you can send command right in command line with -c/--command flag.
proxy:You can set up proxy with -p/--proxy flag. Format is **http(s)://127.0.0.1:8080". Socks5 not supported yet because of minimum requirements. Telegram botInstall python-telegram-bot and replace [TOKEN_HERE] in telegrambot.py by your BotFather token.
Send help to bot and see full command list TODO
ThanksBig thank to Sean B. Palmer for gin tool. I was take index file parser function from there. |
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论