crash.software
Projects
Pull Requests
Issues
Builds
Hunt3r
Code
Files
Commits
Branches
Tags
Pull Requests
Code Comments
Code Compare
Issues
Builds
Statistics
Child Projects
cra.sh
RESTful API
Projects STRLCPY Hunt3r Commits b672f43e
🤬
  • ■ ■ ■ ■
    README.md
    skipped 5 lines
    6 6  <p align="center">
    7 7   <a href="https://opensource.org/licenses/MIT"><img src="https://img.shields.io/badge/license-MIT-_red.svg"></a>
    8 8   <a href="https://github.com/EasyRecon/Hunt3r/issues"><img src="https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat"></a>
    9  - <a href="https://github.com/EasyRecon/Hunt3r"><img src="https://img.shields.io/badge/release-v1.3.0-informational"></a>
     9 + <a href="https://github.com/EasyRecon/Hunt3r"><img src="https://img.shields.io/badge/release-v1.4.0-informational"></a>
    10 10   <a href="https://github.com/easyrecon/hunt3r/issues" target="_blank"><img src="https://img.shields.io/github/issues/easyrecon/hunt3r?color=blue" /></a>
    11 11  </p>
    12 12   
    skipped 41 lines
  • ■ ■ ■ ■ ■ ■
    backend/Gemfile.lock
    skipped 118 lines
    119 119   activerecord
    120 120   kaminari-core (= 1.2.2)
    121 121   kaminari-core (1.2.2)
    122  - loofah (2.17.0)
     122 + loofah (2.18.0)
    123 123   crass (~> 1.0.2)
    124 124   nokogiri (>= 1.5.9)
    125 125   mail (2.7.1)
    skipped 68 lines
    194 194   rails-dom-testing (2.0.3)
    195 195   activesupport (>= 4.2.0)
    196 196   nokogiri (>= 1.6)
    197  - rails-html-sanitizer (1.4.2)
     197 + rails-html-sanitizer (1.4.3)
    198 198   loofah (~> 2.3)
    199 199   railties (7.0.2.4)
    200 200   actionpack (= 7.0.2.4)
    skipped 81 lines
  • ■ ■ ■ ■
    backend/app/controllers/scans_controller.rb
    skipped 112 lines
    113 113   scan_cmd[:cmd] += ' --permutation true' if scan.permutation
    114 114   scan_cmd[:cmd] += ' --gau true' if scan.gau
    115 115   scan_cmd[:cmd] += ' --amass-active true' if scan.active_recon
    116  - scan_cmd[:cmd] += " --excludes #{scan.excludes.join('|')}" unless scan.excludes.nil? || scan.excludes.empty?
     116 + scan_cmd[:cmd] += " --excludes #{scan.excludes.join(',')}" unless scan.excludes.nil? || scan.excludes.empty?
    117 117   scan_cmd
    118 118   end
    119 119   
    skipped 184 lines
  • ■ ■ ■ ■
    backend/storage/tools/libs/recon_scan.rb
    skipped 51 lines
    52 52  private
    53 53   
    54 54  def clean_domains
    55  - regex_string = OPTIONS[:excludes].split('|')
     55 + regex_string = OPTIONS[:excludes].split(',')
    56 56   regex = []
    57 57   regex_string.each do |rs|
    58 58   regex << Regexp.new(".*#{rs}.*")
    skipped 19 lines
  • ■ ■ ■ ■ ■ ■
    backend/storage/tools/libs/tools/httpx.rb
    skipped 36 lines
    37 37   
    38 38   # Allows not to pollute the recon with useless domains
    39 39   # Ex http://www.domain.tld 302 to https://www.domain.tld
    40  - next if url.start_with?('http://') && url.match?(%r{https://(www\.)?#{host}(:443)?/?})
    41  - next if url.match?(%r{https://.*:80})
     40 + next if url.start_with?('http://') && result_json['location'].match?(%r{https://(www\.)?#{host}(:443)?/?})
     41 + next if url.start_with?('https://') && url.end_with?(':80')
     42 + next if url.start_with?('http://') && url.end_with?(':443')
    42 43   
    43  - url.sub!(':443', '')
    44  - url.sub!(':80', '')
     44 + url.sub!(':443', '') if url.end_with?(':443')
     45 + url.sub!(':80', '') if url.end_with?(':80')
    45 46   
    46 47   technologies = []
    47 48   
    skipped 46 lines
  • ■ ■ ■ ■ ■ ■
    docs/changelog.md
    1 1  # Changelog
    2 2   
     3 +## Version 1.4.0
     4 + 
     5 +**Scan Improvements :**
     6 + 
     7 +- Fix exclusions when multiples regex is used
     8 +- Improve subdomains filtering
     9 + 
    3 10  ## Version 1.3.0
    4 11   
    5 12  **Scan Improvements :**
    skipped 41 lines
Please wait...
Page is in error, reload to recover