We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
When HTTP connections fail droopescan reports the test as a positive result, e.g. it found a module.
5 GET requests to detect modules, such as the following, timed out without a response. These are displayed in the output as found.
GET /sites/default/modules/content_glider/content_glider.module HTTP/1.1
If the connection fails it should retry for a set number of times.
I'm using Kali with the latest version of droopescan that is current with master branch.
I used the following command. This connected to the Burp proxy.
python3 ./drupwn --target https://xxx --bauth asdfsadfsadfsadf== --version 8 --mode enum --proxy 127.0.0.1:8080 --log
The log is as follows. All Modules found were false positives.
============ Themes ============ [+] seven [+] stark [+] bartik [+] classy ============ Custom Themes ============ ============ Default files ============ [+] /web.config (403) [+] /robots.txt (200) [+] /update.php (403) [+] /install.php (200) ============ Modules ============ [+] HWCTravel [+] popups_reference [+] imageslider [+] content_glider [+] active_tags ============ Custom Modules ============ ============ Nodes ============ https://xxx/node/491 https://xxx/node/675 ============ Users ============
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Problem
When HTTP connections fail droopescan reports the test as a positive result, e.g. it found a module.
5 GET requests to detect modules, such as the following, timed out without a response. These are displayed in the output as found.
GET /sites/default/modules/content_glider/content_glider.module HTTP/1.1
Recommendation
If the connection fails it should retry for a set number of times.
Environment
I'm using Kali with the latest version of droopescan that is current with master branch.
Usage
I used the following command. This connected to the Burp proxy.
python3 ./drupwn --target https://xxx --bauth asdfsadfsadfsadf== --version 8 --mode enum --proxy 127.0.0.1:8080 --log
# Logs
The log is as follows. All Modules found were false positives.
The text was updated successfully, but these errors were encountered: