jerrychan807/WSPIH: Website Sensitive Personal Information Hunter 网站个人敏感信息文件扫描器
2019-05-07 23:24:25
Author: github.com(查看原文)
阅读量:183
收藏
Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.
Sign up
Website Sensitive Personal Information Hunter 网站个人敏感信息文件扫描器
Permalink
| Type |
Name |
Latest commit message |
Commit time |
|
Failed to load latest commit information. |
|
img
|
update
|
May 5, 2019
|
|
|
lib
|
[-] remove third party module:docx
|
Apr 30, 2019
|
|
|
targets
|
update
|
Apr 28, 2019
|
|
|
tests
|
requirements update
|
Apr 23, 2019
|
|
|
tools
|
update
|
Apr 27, 2019
|
|
|
.gitignore
|
update lib
|
Apr 15, 2019
|
|
|
CombineResult.py
|
debug:没有扫出结果时报错
|
Apr 29, 2019
|
|
|
Downloader.py
|
update
|
Apr 27, 2019
|
|
|
LICENSE
|
Initial commit
|
Apr 1, 2019
|
|
|
LinksCrawler.py
|
update
|
Apr 27, 2019
|
|
|
README.md
|
Update README.md
|
May 1, 2019
|
|
|
SensitiveFileParser.py
|
[-]放弃记录Error log
|
Apr 26, 2019
|
|
|
SensitivesHunter.py
|
update
|
Apr 28, 2019
|
|
|
config.py
|
debug
|
Apr 28, 2019
|
|
|
requirements.txt
|
requirements update
|
Apr 23, 2019
|
网站个人敏感信息文件扫描器
- 本项目仅供学习,测试,交流使用.勿用于非法用途。
- 如果目标是学校网站,麻烦把漏洞提交到教育行业漏洞报告平台,谢谢.
教育行业漏洞报告平台是一个面向全教育行业的漏洞报告平台。平台旨在汇聚多方力量,帮助提升教育系统关联学校、单位的信息系统安全性,为推进教育信息化建设保驾护航。
开发记录
初始化:
# 下载
git clone https://github.com/jerrychan807/WSPIH.git
# 进入项目目录
cd WSPIH
# 安装依赖模块
pip3 install -r requirements.txt
# 修改配置文件(若不修改,则使用默认配置)
vi config.py
开始扫描:
# 使用
python3 SensitivesHunter.py 目标文件 结果文件夹
# 示例
python3 SensitivesHunter.py targets/http-src-1-100.txt src
查看结果:
如果有扫出敏感文件...
单个结果:
- 每个目标的结果会保存在 结果文件夹/对应域名 下.
- 会保留有问题的敏感文件
- 文件链接
file_links.json、敏感结果result.json
汇总结果:
# 输出最终汇总的结果
python3 CombineResult.py 结果文件夹
# 示例
python3 CombineResult.py src
文章来源: https://github.com/jerrychan807/WSPIH
如有侵权请联系:admin#unsafe.sh
