From cbadc92d85f609a7ba1ebfc6631facb117d23330 Mon Sep 17 00:00:00 2001 From: root Date: Sat, 20 Apr 2019 14:22:32 +0530 Subject: [PATCH] Authentication and improve detection --- kicks3/kicks3.py | 14 ++++++++------ setup.py | 2 +- 2 files changed, 9 insertions(+), 7 deletions(-) diff --git a/kicks3/kicks3.py b/kicks3/kicks3.py index a9ddeaf..bd403d7 100644 --- a/kicks3/kicks3.py +++ b/kicks3/kicks3.py @@ -2,31 +2,33 @@ # -*- coding: utf-8 -*- import requests,re,argparse bucket=[] +cookies='' ap = argparse.ArgumentParser() -ap.add_argument("-u", "--url", required=True,help="Please enter Url start with http or https") +ap.add_argument("-u", "--url", required=True,help="Please enter target Url start with http or https") +ap.add_argument("-c", "--cookie", required=False,help="Paste ur cookie values for authentication purpose") args = vars(ap.parse_args()) target=args['url'] +if args['cookie']: + cookies=args['cookie'] def remove_duplicate(x): return list(dict.fromkeys(x)) try: - html=requests.get(target,timeout=10).content + html=requests.get(target,timeout=10,headers={'cookie':cookies}).content regjs=r"(?<=src=['\"])[a-zA-Z0-9_\.\-\:\/]+\.js" - regs3=r"[a-zA-Z\-_0-9]+\.s3\.?(?:[a-zA-Z\-_0-9]+)?\.amazonaws\.com|(?<=\/\/)s3\.?(?:[a-zA-Z\-_0-9]+)?\.amazonaws\.com\/[a-zA-Z\-_0-9.]+" + regs3=r"[a-zA-Z\-_0-9]+\.s3\.?(?:[a-zA-Z\-_0-9]+)?\.amazonaws\.com|(?0: for i in js: if i.startswith('//'): jsurl=i.replace('//','http://') - # print(jsurl) elif i.startswith('http'): jsurl=i else: jsurl=target+'/'+i - jsfile=requests.get(jsurl,timeout=10).content + jsfile=requests.get(jsurl,timeout=10,headers={'cookie':cookies}).content s3=re.findall(regs3,jsfile) if s3: bucket=bucket+s3 diff --git a/setup.py b/setup.py index 2bae84e..cdaa65f 100644 --- a/setup.py +++ b/setup.py @@ -7,7 +7,7 @@ setuptools.setup( name="kicks3", - version="0.0.7", + version="0.0.8", author="Syed Abuthahir", author_email="developerabu@gmail.com", description="Recon tool",