A web interrogation tool for nosy jerks.
Hardly a new tool, but I felt the itch, and so it went. There are better, safer, more comprehensive tools out there to do this.
- Interrogates a list of files and directories on a web server.
- Dumps all the comments in the HTML.
- Dumps additional file paths and domains found.
- Calls optional additional handlers if a particular entry is found; for instance, it currently checks if
/xmlrpc.phpreturns some basic info if/wp-adminis found. - The legality of this tool comes down to where you live and your personal ethics.
- Edit
TARGETSin/app/targets.pyto add/remove entries and sections. - If a section is a dictionary, it must contain two properties:
handler- this is called when any of the entries in the adjacentfilesdictionary are found.files- dictionary of files, where the key is the filename and the value is the optional handler function.- All functions are optional; just set them to
None. - Check the "WordPress" section for a working example of this.
- No contributions are being accepted for this project.
- Issues with reproducible details are encouraged.
- No support is being provided.
- Feel free to fork. It's not a complicated project.
