ARQUIVOTI – SEU GUIA SOBRE TECNOLOGIA.

Dicas, tutoriais e reviews sobre Android, Linux e Windows.

Droopescan – Indentifique falhas em CMSs inclusive Drupal & Silverstripe

Droopescan - Indentifique falhas em CMSs inclusive Drupal & Silverstripe 1

Droopescan – Indentifique falhas em CMSs inclusive Drupal & Silverstripe. Se você é um profissional de segurança da informação essa ferramenta é simplesmente indispensávelUm scanner  que ajuda  pesquisadores de segurança na identificação de problemas com vários CMSs:

  • Drupal.
  • SilverStripe.

Funcionalidade parcial para :

  • WordPress.
  • Joomla.
computer:~/droopescan$ droopescan scan drupal -u https://example.org/ -t 8
[+] No themes found.

[+] Possible interesting urls found:
    Default changelog file - https://www.example.org/CHANGELOG.txt
    Default admin - https://www.example.org/user/login

[+] Possible version(s):
    7.34

[+] Plugins found:
    views https://www.example.org/sites/all/modules/views/
        https://www.example.org/sites/all/modules/views/README.txt
        https://www.example.org/sites/all/modules/views/LICENSE.txt
    token https://www.example.org/sites/all/modules/token/
        https://www.example.org/sites/all/modules/token/README.txt
        https://www.example.org/sites/all/modules/token/LICENSE.txt
    pathauto https://www.example.org/sites/all/modules/pathauto/
        https://www.example.org/sites/all/modules/pathauto/README.txt
        https://www.example.org/sites/all/modules/pathauto/LICENSE.txt
        https://www.example.org/sites/all/modules/pathauto/API.txt
    libraries https://www.example.org/sites/all/modules/libraries/
        https://www.example.org/sites/all/modules/libraries/CHANGELOG.txt
        https://www.example.org/sites/all/modules/libraries/README.txt
        https://www.example.org/sites/all/modules/libraries/LICENSE.txt
    entity https://www.example.org/sites/all/modules/entity/
        https://www.example.org/sites/all/modules/entity/README.txt
        https://www.example.org/sites/all/modules/entity/LICENSE.txt
    google_analytics https://www.example.org/sites/all/modules/google_analytics/
        https://www.example.org/sites/all/modules/google_analytics/README.txt
        https://www.example.org/sites/all/modules/google_analytics/LICENSE.txt
    ctools https://www.example.org/sites/all/modules/ctools/
        https://www.example.org/sites/all/modules/ctools/CHANGELOG.txt
        https://www.example.org/sites/all/modules/ctools/LICENSE.txt
        https://www.example.org/sites/all/modules/ctools/API.txt
    features https://www.example.org/sites/all/modules/features/
        https://www.example.org/sites/all/modules/features/CHANGELOG.txt
        https://www.example.org/sites/all/modules/features/README.txt
        https://www.example.org/sites/all/modules/features/LICENSE.txt
        https://www.example.org/sites/all/modules/features/API.txt
    [... snip for README ...]

[+] Scan finished (0:04:59.502427 elapsed)
Você pode obter uma lista completa de opções de execução:
droopescan --help
droopescan scan --help
Porque droopescan :
  • é rápido.
    • é estável.
    • permite a digitalização simultânea de vários sites.
    • E é 100% em python.
    Instalação é fácil usando pip:
    apt-get install python-pip
    pip install droopescan
    Instalação manual:
    git clone https://github.com/droope/droopescan.git
    cd droopescan
    pip install -r requirements.txt
    droopescan scan --help
    Mais informações e download:
                     DOWNLOAD Droopescan
     

    Voltar ao topo

    Nós usamos cookies e outras tecnologias semelhantes para melhorar a sua experiência em nossos serviços, personalizar publicidade e recomendar conteúdo de seu interesse. Ao utilizar nossos serviços, você concorda com tal monitoramento. Mais informações: Política de Privacidade

    The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

    Close