{"id":13542395,"url":"https://github.com/BitTheByte/Eagle","last_synced_at":"2025-04-02T10:30:43.134Z","repository":{"id":54809550,"uuid":"263177997","full_name":"BitTheByte/Eagle","owner":"BitTheByte","description":"Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities ","archived":false,"fork":false,"pushed_at":"2023-06-04T18:53:26.000Z","size":45,"stargazers_count":110,"open_issues_count":1,"forks_count":34,"subscribers_count":11,"default_branch":"master","last_synced_at":"2024-11-03T08:33:30.806Z","etag":null,"topics":["bugbounty","bugcrowd","cve","ftp","hackerone","hacking","python","ssrf","takeover","xss"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/BitTheByte.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2020-05-11T23:02:19.000Z","updated_at":"2024-10-23T19:52:41.000Z","dependencies_parsed_at":"2022-08-14T03:31:07.724Z","dependency_job_id":"2a393742-67a9-41a2-b32a-f29ab4f4e6b2","html_url":"https://github.com/BitTheByte/Eagle","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BitTheByte%2FEagle","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BitTheByte%2FEagle/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BitTheByte%2FEagle/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BitTheByte%2FEagle/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/BitTheByte","download_url":"https://codeload.github.com/BitTheByte/Eagle/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246796774,"owners_count":20835444,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","bugcrowd","cve","ftp","hackerone","hacking","python","ssrf","takeover","xss"],"created_at":"2024-08-01T10:01:06.275Z","updated_at":"2025-04-02T10:30:42.716Z","avatar_url":"https://github.com/BitTheByte.png","language":"Python","readme":"# Project Eagle (Alpha)\nProject Eagle is a plugin based vulnerabilities scanner with threading support used for detection of low-hanging bugs on mass scale \n```\n .---. .-----------\n / \\ __ / ------\n / / \\( )/ -----\n ////// ' \\/ ` --- Multipurpose vulnerability scanner\n //// / // : : --- v1.0b\n / / / /` '-- 2019-2020\n //..\\\\ \n ====UU====UU==== \n '//||\\\\` \n ''``\n Project Eagle\n\n```\n\n\u003cp align=\"center\"\u003e\n Developed and maintained: \u003ca href=\"https://twitter.com/BitTheByte\"\u003e@BitTheByte\u003c/a\u003e\n Idea: \u003ca href=\"https://twitter.com/K4r1it0\"\u003e@K4r1it0\u003c/a\u003e\n\u003c/p\u003e\n\n# Requirements\n1) Python \u003e= 3.6\n2) Install python libraries \n```\n$ python3 -m pip install -r requirements.txt\n```\n3) Works on Windows and Linux however windows is not the primary platform\n\n# Usage \n#### Ping\nThis mode is only for checking online targets\n```\n$ python3 main.py -f domains.txt --ping\n```\n#### Basic usage\n```\n$ python3 main.py -f domains.txt\n```\n`domains.txt`: is a text file containing host names or ips, new line separated \n \n \n#### Advanced usage \n```\n$ python3 main.py -f domains.txt -w 10 --db output.db.json\n```\n`domains.txt`: is a text file containing host names or ips, new line separated \n`output.db.json`: json formated output of the tool (will be used to restore state in future releases) \n`10`: is the number of working threads. keep in mind, workers are able to start workers for their work not limited by this number\n\n#### Debug (verbose) mode\n```\n$ python3 main.py ...args -v*?\n```\n`v`: success, warning\n`vv`: success, warning, error\n`vvv`: all suppored messages\n\n# Features\n1) CRLF\n2) Senstive files e.g(`.git`, `info.php` ..)\n3) Subdomain takeover \n4) Anonymous FTP login\n5) S3 buckets misconfiguration including automatic takeover and upload\n6) HTTP Request Sumggling\n7) Firebase database misconfiguration\n8) Senstive information disclosure e.g(`API Keys`, `Secrets` ..) including JS files and HTML pages\n9) Missing SPF Records \n10) Path Traversal\n11) PHP-CGI - CVE_2012_1823\n12) Shell Shock - CVE_2014_6271\n13) Struts RCE - CVE_2018_11776\n14) WebLogic RCE - CVE_2019_2725\n15) Confluence LFI - CVE_2019_3396\n16) Ruby on Rails LFI - CVE_2019_5418\n17) Atlassian SSRF - CVE_2019_8451\n18) Apache Httpd mod_rewrite - CVE_2019_10098\n\n# TODO-Features\n- XSS Detection\n- SSRF Attacks \n- Platform Delection \n- Platform Based attacks \n- Automatic Login bruteforce\n- Automatic directory bruteforce\n- Parameter gathering and fuzzing\n- Detecting Error messages\n- Ability to select plugins \n- Automatic updates\n- Port Scanning and service detection\n","funding_links":[],"categories":["Miscellaneous","Python (1887)","Python"],"sub_categories":["Vulnerability Scanners"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FBitTheByte%2FEagle","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FBitTheByte%2FEagle","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FBitTheByte%2FEagle/lists"}