Same Site Scripting Tester
Project description
PTSAMESITE
Same Site Scripting Testing Tool
ptsamesite is a tool for testing Same Site Scripting vulnerability. ptsamesite supports mass domain testing.
- Script sends DNS "A" query to domain with 'localhost' as subdomain.
- If DNS responds with IP '127.0.0.1', the record is prone to Same Site Scripting vulnerability.
Installation
pip install ptsamesite
Usage examples
$ ptsamesite -d example.com
$ ptsamesite -d subdomain1.subdomain2.example.com -s
$ ptsamesite -d example.com example2.com
$ ptsamesite -f domain_list.txt
Options
-d --domain <domain> Test domain
-f --file <file> Test domains from file
-V --vulnerable Print only vulnerable domains
-s --subdomains Scan all subdomains of given domain
-t --threads <threads> Number of threads (default 20)
-j --json Output in JSON format
-v --version Show script version and exit
-h --help Show this help message and exit
Dependencies
- dnspython
- tldextract
- ptlibs
- ptthreads
Version History
- 0.0.1 - 0.0.2
- Alpha releases
Licence
Copyright (c) 2020 HACKER Consulting s.r.o.
ptsamesite is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
ptsamesite is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with ptsamesite. If not, see https://www.gnu.org/licenses/.
Warning
You are only allowed to run the tool against the websites which you have been given permission to pentest. We do not accept any responsibility for any damage/harm that this application causes to your computer, or your network. Penterep is not responsible for any illegal or malicious use of this code. Be Ethical!
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file ptsamesite-0.0.2.tar.gz.
File metadata
- Download URL: ptsamesite-0.0.2.tar.gz
- Upload date:
- Size: 4.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.2 importlib_metadata/4.8.1 pkginfo/1.7.1 requests/2.22.0 requests-toolbelt/0.9.1 tqdm/4.62.2 CPython/3.8.10
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | a4032add450374a422997e55efa16ecf05c7df431fff36bc4ec91598435ecabd |
|
| MD5 | 3230e5a65e4a870395c3502dd0a43cd2 |
|
| BLAKE2b-256 | 430c5ef211c3a25b7790d9d283b0b76367f57ff32608400522b38adfe6ceedbd |
File details
Details for the file ptsamesite-0.0.2-py3-none-any.whl.
File metadata
- Download URL: ptsamesite-0.0.2-py3-none-any.whl
- Upload date:
- Size: 17.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.2 importlib_metadata/4.8.1 pkginfo/1.7.1 requests/2.22.0 requests-toolbelt/0.9.1 tqdm/4.62.2 CPython/3.8.10
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | c2d4bee7dfee01d5ea02affc16e4e9ce82d0320f50957cb5898c6978115b30bf |
|
| MD5 | 6b734b38e5a6a2f807e9b1b90b64ea5b |
|
| BLAKE2b-256 | 10c2d857c1d231f60be1af59a0b292dcaf692b2172657b35384cb338778eb317 |
