Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/xawdxawdx/sentrySSRF
Tool to searching sentry config on page or in javascript files and check blind SSRF
https://github.com/xawdxawdx/sentrySSRF
Last synced: about 1 month ago
JSON representation
Tool to searching sentry config on page or in javascript files and check blind SSRF
- Host: GitHub
- URL: https://github.com/xawdxawdx/sentrySSRF
- Owner: xawdxawdx
- License: mit
- Created: 2019-10-17T09:35:09.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2024-05-28T10:26:19.000Z (7 months ago)
- Last Synced: 2024-08-01T10:17:03.393Z (4 months ago)
- Language: Python
- Size: 12.7 KB
- Stars: 68
- Watchers: 3
- Forks: 18
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-bugbounty-tools - sentrySSRF - Tool to searching sentry config on page or in javascript files and check blind SSRF (Exploitation / Server Side Request Forgery)
README
### This tool is based on LinkFinder https://github.com/GerbenJavado/LinkFinder you can read more about this tool here
# About sentrySSRF
Written in python, try to find sentry config on page or in sentry files by using regular expressions from LinkFinder and then check for blind SSRF in sentry.
## Screenshots
## Installation
sentrySSRF As LinkFinder supports **Python 3**.
```
$ git clone https://github.com/xawdxawdx/sentrySSRF.git
$ cd sentrySSRF
$ python setup.py install
```
## Dependencies
sentrySSRF depends on the `argparse` and `jsbeautifier` Python modules. These dependencies can all be installed using [pip](https://pypi.python.org/pypi/pip).
```
$ pip3 install -r requirements.txt
```
### Usage and Examples
* Exact js url:
`python3 sentrySSRF.py -i https://example.com/1.js`
* Input a domain to recursively parse all javascript located in a page to find config with sentry:
`python3 sentrySSRF.py -i https://example.com/ -d`
## Final remarks
- Thanks to GerbenJavado
# sentrySSRF