AAP Finder

                    This small python script can do really awesome work.

AAP Finder (Advanced Admin Page Finder) is a tool written in Python3 with advanced functionalities, with more than 700+ Potential Admin Panels. This Tool Can Easily Find Login Pages of Any Site & is also capable to detect robots.txt File.

Features

• Have more than 700+ Potential Admin Panels
• MultiThreaded
• Able to BruteForce Subdomain LoginPages i.e login.target.com, admin.target.com, etc
• Large Dictionary
• Supports Both HTTP & HTTPS
• BruteForce Multiple Domains at a time
• Stops Scan when Valid LoginPage is found
• Supports PHP, ASP and HTML extensions
• Checks for robots.txt
• Supports Custom Dictionary
• Targets can be passed to this tool via File
• Able to detect EAR (Execute After Redirect) Vulnerability
• Saves the Scan with a Neat & Clean UI in a file
• Self Update [Coming Soon]
• Scan Via Tor & Proxy [Coming Soon]
• Random-Proxy [Coming Soon]
• Random-UserAgent [Coming Soon]

Tools Overview

Front View	Sample Feature

Prerequisite

• Python 3.X

Tested On

Kali Linux - 2019.4

Windows 8,7,10

Installation

Linux

# Navigate to the /opt directory (optional)
$ cd /opt/

# Clone this repository
$ git clone https://github.com/PushpenderIndia/aapfinder.git

# Navigate to aapfinder folder
$ cd aapfinder

# Installing dependencies
$ apt-get update && apt-get install python3

# Give Executable Permission
$ chmod +x aapfinder.py

# Run it
$ python3 aapfinder.py --help

Windows

# Download & Extract 

# Navigate to aapfinder Directory
$ cd aapfinder

# Install Dependencies
$ python -m pip install requests

# Run it using python3
$ python aapfinder.py --help

PentestBox

# Exactly Same Procedure as Linux Installation

# Create Alias by adding this Line to C://Pentestbox/bin/customtools/customaliases file
 aapfinder=py -3 "%pentestbox_ROOT%/bin/Path/to/aapfinder/aapfinder.py
 
# So you'll be able to launch it using: aapfinder --help

Available Arguments

• Optional Arguments

Short Hand	Full Hand	Description
-h	--help	show this help message and exit
-u TARGET	--url TARGET	Specify Target URL of Website.
-d DELAY	--delay DELAY	Specify Delay In Seconds after each Login Url Test.
-c PATH	--custom PATH	Specify Absolute Path of Custom Dictionary.
-f	--fast	Use MultiThreading to Boost The Speed of Scan.
	--targets TARGETS_FILE	Scan Multiple Targets.
-o OUTPUT	--output OUTPUT	Save a Neat Result of Scan.

• Required Arguments

Short Hand	Full Hand	Description
-t TYPE	--type TYPE	Set The Type i.e html, asp, php.

Screenshots

Description : Adding Custom Potential Admin Panels Via File

Command Example : python3 aapfinder.py -u https://target.com --custom my_dict.txt -t php

Description : Adding Multiple Targets Via File

Command Example : python3 aapfinder.py --targets my_targets.txt -t php

Description : Saving Result In a File

Command Example : python3 aapfinder.py -u https://target.com --output result.txt -t php

Description : Saved Result

Description : Able to Find Subdomain Login Panels

Contribute

• All Contributors are welcome, this repo needs contributors who will improve this tool to make it best.