bitrix_scan

wfuzz

cd /opt
git clone --depth 1 https://github.com/HiMiC/bitrix_scan.git
cd bitrix_scan

# словарь сделан для поиска в директории /bitrix/
wfuzz -w /opt/bitrix_scan/bitrix_wordlist.txt --hc 404 https://testphp.vulnweb.com/bitrix/FUZZ


wfuzz --script=backups -z list,robots.txt 
https://testphp.vulnweb.com/bitrix/php_interface/dbconn.php.FUZZ

wfuzz --script=backups -z list,dbconn.php  -p 192.168.1.39:8082 https://testphp.vulnweb.com/bitrix/php_interface/FUZZ

 

wfuzz --script=backups -z list,dbconn.php  -p 192.168.1.39:8082 https://testphp.vulnweb.com/bitrix/php_interface/dbconn.phpFUZZ

wfuzz --script=backups -z list,bitrix 
https://testphp.vulnweb.com/bitrixFUZZ

URL

https://www.netangels.ru/support/cloud-hosting/vulnerabilities-cms-bitrix/ 2024 год https://habr.com/ru/articles/787326/

2022 год attacking_bitrix.pdf https://github.com/cr1f/writeups https://t.me/webpwn/317 https://spy-soft.net/cve-2022-27228-ntlm-relay/

2020 год https://blog.deteact.com/ru/bitrix-waf-bypass/

Other

https://github.com/snk0752/quick-tricks/

go install github.com/indigo-sadland/quick-tricks@latest

Настоящий репозиторий удален. (как ставить из этого репозитория неизвестно)

https://github.com/k1rurk/check_bitrix

cd /opt
git clone --depth 1 https://github.com/k1rurk/check_bitrix.git
cd /opt/check_bitrix

python3 test_bitrix.py -t https://example.com scan -s http://subdomain.oastify.com

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
uploads_sources_list		uploads_sources_list
.gitignore		.gitignore
README.md		README.md
README2_extract.md		README2_extract.md
README_MODULES.md		README_MODULES.md
backups.txt		backups.txt
bitrix_links.txt		bitrix_links.txt
bitrix_links_dir_razrab.txt		bitrix_links_dir_razrab.txt
bitrix_links_sort.txt		bitrix_links_sort.txt
bitrix_scraper.py		bitrix_scraper.py
bitrix_scraper2.py		bitrix_scraper2.py
bitrix_scraper3.py		bitrix_scraper3.py
bitrix_wordlist.txt		bitrix_wordlist.txt
bitrix_wordlist_www.txt		bitrix_wordlist_www.txt
components.txt		components.txt
extract_tar_gz_files.py		extract_tar_gz_files.py
failed_downloads.json		failed_downloads.json
file_sizes.json		file_sizes.json
get_bitrix.py		get_bitrix.py
list_files_in_tar_gz.py		list_files_in_tar_gz.py
list_files_in_tar_gz2.py		list_files_in_tar_gz2.py
list_files_in_tar_gz3.py		list_files_in_tar_gz3.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

bitrix_scan

wfuzz

URL

Other

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

bitrix_scan

wfuzz

URL

Other

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages