Web Information Gathering

OpenDoor v4.1 releases: OWASP WEB Directory Scanner

by do son · Published May 27, 2018 · Updated July 7, 2023

OpenDoor OWASP is a console multifunctional websites scanner. This application finds all possible ways to login, index of/ directories, web shells, restricted access points, subdomains, hidden data, and large backups. The scanning is performed by the built-in dictionary and external dictionaries as well. Anonymity and speed are provided by means of using proxy servers. The software is written for informational purposes and is an open-source product under the GPL license.

Implements

Changelog v4.1

Create crda.yml by @stanislav-web in #62
Create dependency-review.yml by @stanislav-web in #63
v4.1.0 (06.07.2023) LATEST UPDATE by @stanislav-web in #65

Installation

git clone https://github.com/stanislav-web/OpenDoor.git
 cd OpenDoor/
 pip install -r requirements.txt
 chmod +x opendoor.py

Use

 python3 opendoor.py --host http://www.example.com

usage: opendoor.py [-h] [--host HOST] [-p PORT] [-m METHOD] [-t THREADS]

                   [-d DELAY] [--timeout TIMEOUT] [-r RETRIES]

                   [--accept-cookies] [--debug DEBUG] [--tor]

                   [--torlist TORLIST] [--proxy PROXY] [-s SCAN] [-w WORDLIST]

                   [--reports REPORTS] [--reports-dir REPORTS_DIR]

                   [--random-agent] [--random-list] [--prefix PREFIX]

                   [-e EXTENSIONS] [-i IGNORE_EXTENSIONS] [--sniff SNIFF]

                   [--update] [--version] [--examples] [--docs]

                   [--wizard [WIZARD]]



optional arguments:

  -h, --help            show this help message and exit



required named options:

  --host HOST           Target host (ip); --host http://example.com



Application tools:

  --update              Update from CVS

  --version             Get current version

  --examples            Examples of usage

  --docs                Read documentation

  --wizard [WIZARD]     Run wizard scanner from your config



Debug tools:

  --debug DEBUG         Debug level 1 - 3



Reports tools:

  --reports REPORTS     Scan reports (json,std,txt,html)

  --reports-dir REPORTS_DIR

                        Path to custom reports dir



Request tools:

  -p PORT, --port PORT  Custom port (Default 80)

  -m METHOD, --method METHOD

                        Request method (use HEAD as default)

  -d DELAY, --delay DELAY

                        Delay between requests threading

  --timeout TIMEOUT     Request timeout (30 sec default)

  -r RETRIES, --retries RETRIES

                        Max retries to reconnect (default 3)

  --accept-cookies      Accept and route cookies from responses

  --tor                 Using built-in proxylist

  --torlist TORLIST     Path to custom proxylist

  --proxy PROXY         Custom permanent proxy server

  --random-agent        Randomize user-agent per request



Sniff tools:

  --sniff SNIFF         Response sniff plugins

                        (indexof,collation,file,skipempty)



Stream tools:

  -t THREADS, --threads THREADS

                        Allowed threads



Wordlist tools:

  -s SCAN, --scan SCAN  Scan type scan=directories or scan=subdomains

  -w WORDLIST, --wordlist WORDLIST

                        Path to custom wordlist

  --random-list         Shuffle scan list

  --prefix PREFIX       Append path prefix to scan host

  -e EXTENSIONS, --extensions EXTENSIONS

                        Force use selected extensions for scan session -e

                        php,json e.g

  -i IGNORE_EXTENSIONS, --ignore-extensions IGNORE_EXTENSIONS

                        Ignore extensions for scan session -i aspx,jsp e.g

Source: https://github.com/stanislav-web/

Tags: OpenDoor

OpenDoor v4.1 releases: OWASP WEB Directory Scanner

Search

Brilliantly

Content & Links