added waybackpy API

gotr00t0day · Aug 13, 2022 · 239096d · 239096d
1 parent c339a26
commit 239096d
Show file tree

Hide file tree

Showing 4 changed files with 34 additions and 3 deletions.
diff --git a/README.md b/README.md
@@ -6,7 +6,7 @@ Web Security Scanner
 
 
               ,~,
-             ((()-                   - GSec v0.8
+             ((()-                   - GSec v0.9
              -''-.                   - by c0deninja 
             (\  /\)                  - @gotr00t0day (Instagram)
       ~______\) | `\
@@ -43,6 +43,15 @@ Gsec will fetch the shodan API key from the core directory, the passive recon sc
 please save your shodan key in core/.shodan for the scan to be able to work.
 
 
+```
+
+## 📁 OUTPUT
+
+```bash
+
+Some outputs that are too large will be saved in a file in the output folder / directory.
+
+
 ```
 
 ## Usage

diff --git a/gsec.py b/gsec.py
@@ -71,6 +71,7 @@ def commands(cmd):
         passive_recon.whois_scan(args.target)
         passive_recon.dns_info(args.target)
         passive_recon.shodan_search(args.target)
+        passive_recon.waybackurls_scan(args.target)
     else:
         fetch_requests.do_requests(args.target)
         ip = urltoip.get_ip(args.target)

diff --git a/requirements.txt b/requirements.txt
@@ -4,4 +4,5 @@ colorama
 urllib3
 python-whois
 dnspython
-shodan
+shodan
+waybackpy
diff --git a/utils/passive_recon.py b/utils/passive_recon.py
@@ -3,6 +3,13 @@
 import dns.resolver
 import shodan
 import socket
+import subprocess
+
+def commands(cmd):
+    try:
+        subprocess.check_call(cmd, shell=True)
+    except:
+        pass
 
 
 def whois_scan(domain: str) -> str:
@@ -47,4 +54,17 @@ def shodan_search(domain: str) -> str:
         except shodan.APIError:
             print(f"{Fore.MAGENTA}[+] {Fore.CYAN}-{Fore.YELLOW} Shodan Key: {Fore.GREEN} Invalid Key")
         except socket.herror:
-            pass
+            pass
+
+def waybackurls_scan(domain: str) -> str:
+    cmd = f"waybackpy --url {domain} --user_agent 'my-user-agent' --known_urls | head -10000"
+    p = subprocess.Popen(cmd, shell=True, stdout=subprocess.PIPE, stderr=subprocess.STDOUT)
+    check, err = p.communicate()
+    check = check.decode()
+    with open("output/waybackurls.txt", "a") as f:
+        f.writelines(check)
+    print(f"{Fore.MAGENTA}[+] {Fore.CYAN}-{Fore.WHITE} Waybackurls: {Fore.GREEN} Saved to /output/waybackurls.txt")
+
+
+
+