Python

Definir función

def def_handler(sig, frame):

burp = {'http': 'http://localhost:8080'}

signal.signal(signal.SIGINT, def_handler)

s = requests.session()

r = s.get(main_url)

post_data = {
    '__VIEWSTATE': viewstate,
    '__EVENTVALIDATION': eventvalidation,
    'btnUpload': 'Upload'
}

re.findall(r'id="__VIEWSTATE" value="(.*?)"', r.text)[0]

if "Invalid File. Please try again" not in r.text:
    log.info("Extension %s is valid!!" % extension)

f = open("/usr/share/wordlists/SecLists/Discovery/Web-Content/raft-large-extensions-lowercase.txt", "rb")

for extension in f.readlines():
    extension = extension.decode().strip()
    p1.status("Testing with %s" % extension)
    makeRequests(extension)

Last updated 2 years ago