v0.0.9
Changelog
d93b106 bug fix in intelligent mode
c561cb2 update metasploit paths
6441131 update exploitdb files
a2036ce update exploitdb wordlists
4f8263d cleanup code
1ce174d cleanup packetstormPaths.txt
1032296 cleanup packetstormPaths.txt
a666198 push update for .gitignore
f498d7f push update for .gitignore
0cd089d fix for http proxy function not working - issue #4
1f6c00a fix for http proxy function not working - issue #4
5b8389c update packstormPaths.txt
3eb2679 update packstormPaths.txt
672be2c add paths from CVE-2018-2894 - ref from https://github.com/LandGrey/CVE-2018-2894
ce8bfad add paths from CVE-2018-2894 - ref from https://github.com/LandGrey/CVE-2018-2894
920dd42 Merge pull request #8 from Chan9390/dockerfile
ebf816e Merge pull request #8 from Chan9390/dockerfile
f930961 Updated readme
229cf8b Updated readme
398bc0f Updated dockerfile
0cda351 Updated dockerfile
78dacba update Dockerfile and README.md after removal of binaries from source
c252134 update Dockerfile and README.md after removal of binaries from source
3d6d12b update exploitdb*.txt wordlists
6afbc9b update exploitdb*.txt wordlists
28c99fc update exploitdb path lists
cae99cb update exploitdb path lists
8c8dcef update exploitdb paths
6ab8cfa update exploitdb paths
42fd82e add uri paths for CVE-2017-12542 - https://github.com/airbus-seclab/ilo4_toolbox
0cd06ab add uri paths for CVE-2017-12542 - https://github.com/airbus-seclab/ilo4_toolbox
bc38dec if --update option is used, wordlist doesnt gets loaded after download - fixed
33b7fc3 if --update option is used, wordlist doesnt gets loaded after download - fixed
f3fd87f minor bug fixes
d62f8b5 minor bug fixes
97cfd48 minor bug fixes
1217ecf minor bug fixes
43730c5 temp
1f457f9 temp
2593f02 speed improvements, bug fixes and code cleanup
76f9df5 speed improvements, bug fixes and code cleanup
1dca934 update exploitdb_php.txt
e50aa9d update exploitdb_php.txt
1c8ced8 update defaultPaths.txt
5e86376 update defaultPaths.txt
dc023f0 add /common/lvl5/help/webctrl/ - CVE-2018-8819 - https://www.coalfire.com/The-Coalfire-Blog/June-2018/How-I-Found-CVE-2018-8819-Out-of-Band-(OOB)-XXE
1a2081b add /common/lvl5/help/webctrl/ - CVE-2018-8819 - https://www.coalfire.com/The-Coalfire-Blog/June-2018/How-I-Found-CVE-2018-8819-Out-of-Band-(OOB)-XXE
817d0be update exploitdb wordlists
9cc8396 update exploitdb wordlists
72dd481 update exploitdb*.txt
726cc82 update exploitdb*.txt
e662640 update --cms mode, add Wordpress 4.5.1 - WordPress Same-Origin Method Execution (SOME)
1642bda update packetstormPaths.txt
a8852ef add --skip option so that websites like OWA,VPN can be ignored (as these would not have any "interesting" files
6b6ebe4 update exploitdb.txt
63f7cf4 update exploitdb_asp.txt
96565e6 update exploitdb_asp.txt
6a83466 update exploitdb_jsp.txt
7b63843 update exploitdb_php.txt
c8a480f update packetstormPaths.txt
aebe900 update packetstormPaths.txt
3bc9ac7 update explotidb.txt - 29 May 2018
2ff2f8d update defaultPaths.txt - add /ForensicsAnalysisServlet/ IBM QRadar SIEM Unauthenticated Remote Code Execution (CVE-2018-1418)
2a60801 update packetstormPaths.txt
6825dd5 update packetstormPaths.txt
d4d99f5 update packetstormPaths.txt
697562e update packetstormPaths.txt
033af64 update msfPaths.txt - add D-Link DSL-2750B OS Command Injection
25a5fac add /plc/webvisu.htm - CoDeSys webvisu - from @ZoomEye
a7f357e cleanup lists
8cbb3a9 update path lists - 23 may 2018
30e7702 error handling
9353355 update README.md
f64443f add --update function to update wordlists
3690583 update uri path list
b5b39ee update exploitdb_others.txt
21ca35f add --update function for updating the uri path lists from exploitdb/msf/etc
a84b24d cleanup paths
ecd0f9f update paths
0798c68 update exploitdb_all.txt
b973d7d update exploitdb_php.txt
6edc60b update exploitdb_php.txt
65826ec update exploit-db uri paths
c9b9c79 update README.md
02d5a57 change from go-textdistance to smetrics as it doesn't support 386 and arm
9f22b65 change from go-textdistance to smetrics as it doesn't support 386 and arm
ebde8d1 update goreleaser
dd7403d update goreleaser
315368b fix bug when running pathBrute in linux - program never exits
4770a3c add /weblogin.html - DrayTek router devices - provided by #ZoomEye - possible default passwords
ced9b13 update exploitdb uri paths
802fa4a update defaultPaths.txt
0cfdc9b update README.md
7d96957 update README.md
7f3b990 update README.md
74f8d0d cleanup output of --cms options
9d29345 update README.md with instructions on --cms option
c2621a1 update exploitdb path lists
4365fd4 remove i386
e280941 remove i386
1781820 use Jaro–Winkler distance to calculate difference between 2 different request response - used to check how different 2 pages are (where the webserver returns http status code 200 for all requests
6d2b134 update exploitdb wordlists
3f86222 add /apps/backend/config/ - Directories containing Symfony CMS juicy info and files
7299dc1 add /esp/cms_changeDeviceContext.esp - PAN-SA-2017-0027 - https://www.pentestgeek.com/penetration-testing/attacking-palo-alto-networks-pan-os
db3b2e2 prompts user and exit if value for -r exceeds the maximum length of websites*wordlist
7bb9e76 cleanup code
4f1dc53 error handling
6cb1766 add code to improve intelligentMode
0e32045 path list cleanup
1244c47 path list cleanup
36abe43 cleanup code
5b441ee implement code for #2
0720ff6 add /GponForm/diag_Form - CVE-2018-10561
29d6f67 minor fixes
d91a424 remove comments
c85aa5d minor fixes
62618b7 minor speed improvements
291e041 update defaultPaths.txt
fe4db09 minor update
cb733d1 minor update
f9a190e cleanup path lists
678d7da path list cleanup
a4e8110 update path lists
5105834 bug fixes
d9c343a bug fixes
8bc1942 bug fixes
aa99189 fix bug where some invalid matching is not displayed when using -i option
5bb0bfd update path lists
0675e76 update msfPaths.txt
3ae617a update defaultPaths.txt
99a0b8c update defaultPaths.txt
e2bdceb update path lists
0660cf0 bug fixes
5269281 update word lists
f9f2a56 update defaultPaths.txt
3db7bab update path lists
d4e44bc update path lists
4d37b83 add path for Apigility Web Interface
6084b06 add new paths from exploit-db - 6 May 2018
20eedc1 add /Diagnostics.asp as reported by GreyNoise here. https://twitter.com/GreyNoiseIO/status/992522759610740736
3940b7e fix bug with matching url
69aee0c update .gitignore
6c62e5d fix bug with matching url
ec60c91 fix for some websites returning false positive
20a141f update defaultPaths.txt
f5549d1 add 1612-exploits
a294dc6 add 1608-exploits
4c9c3c0 update pathBrute
334cac0 update packetstormPaths.txt
7b0e525 add 1607-exploits
051adba update packetstormPaths.txt
cf0ccad add 1606-exploits
1dc1954 add paths from 44560.py
71555b1 add /device.rsp?opt=user&cmd=list (CVE-2018-9995)
812acf9 fix issue when using --cms mode with -i
676b584 update README.md
89f2111 update msfPaths.txt
8f8f56b cleanup
cb9a862 cleanup
e9985df add paths from Metasploit framework
5081dc3 add paths from Metasploit framework
c1d4d65 update README.md
371c9ef add new exploitdb php paths
02a86b2 updated exploitdb_php.txt
047b14b add /plugins/servlet/oauth/users/icon-uri?consumerUri=https://www.google.com - JIRA - SSRF (CVE-2017-9506)
c1f9b10 add option for exploitdb-others
89c7ff5 add metasploit paths from https://github.com/milo2012/metasploitHelper
5c04bb9 Merge branch 'master' of https://github.com/milo2012/pathbrute
064f3c3 add ElasticSearch Search Groovy
90644cf update word list
5ee650b update word list
b5e2990 update word lists
1d490b5 cleanup lists
3c8b395 add /Sitefinity/Authenticate/SWT
f5b82c1 update defaultPaths.txt
87e583c remove debug text
e4fe954 add more paths for Weblogic wls-wsat
44c3e8d add path for Happy Axis page
46647a4 update pathBrute
3dbd91e update pathBrute files
949f964 update pathlists
6016340 update wordlist
1d827bb update pathBrute binaries
1cb024a update README.md
42d9adc update README.md
ced9542 update README.md
abb0a94 update README.md
bf0858c update README.md
7e003af remove redundant binary
659211a implement feature for #1
e984c84 update README.md
6bef2a7 update defaultPaths.txt
2f0f4de add path for unprotected odoo DB manager, thanks @ayoubfathi
d038a76 update exploitdb_php.txt andexplotidb_all.txt
4b99213 update defaultPaths.txt
c687b3d error handling
56e8622 add tags for results
5f3209f update files
509577b .gitignore
dfeab04 minor text changes
2de33a1 update defaultPaths.txt
7016880 update exploitdb_all.txt
3c33bb4 update exploitdb_all.txt
2a08fee update exploitdb_php.txt
68747f8 minor fixes
64278b3 remove additional text
4baf64b update defaultPaths.txt
fbb16e9 update defaultPaths.txt
3708c0b update README.md on pulling the latest docker iamges
7adbff8 update README.md regarding dockerfile
fe11b86 update README.md
498b1c0 add timeout option
3f19815 fix issue where program doesnt exit
f433cbe update pathBrute
86f2fb1 update exploitdb.txt
53cb77a exit program if provided -r num is larger than list
15dcf3d fix issue where program exists when using with large wordlists
f5db5c6 fix issue where program exists when using with large wordlists
55578a8 update README.md
e206e25 update README.md
e70f336 add option to set user-agent
ae2e513 update README.md
15cd38e add HTTP proxy option
06ae3c5 fix error handling
821e6d4 fix error handling
7a18d01 update
dbf22ae update defaultPaths.txt - add /user/register - Drupalgeddon2
03e4f65 update README.md
b9ab717 update README.md
ddcca2e update README.md
47cf172 fix download for exploitdb_all.txt
3803ee8 add goreleaser.yml
681332e add goreleaser.yml
5bd4b81 add goreleaser.yml
25bfea4 add goreleaser.yml
a7d0e39 add main.go
1924469 add main.go
a954c0f update color
7e8f382 fix colors in logs
e30c3fc add -r option to resume from a certain position
aa9f8d6 update pathBrute
ec983a0 update pathBrute - some status no appearing - fix
7873fb3 update pathBrute - some status no appearing - fix
e77c1b0 update pathBrute - some status no appearing - fix
a5e10ca set timeout
e0d9959 update exploitdb_.txt
a019af3 rename exploit_db.txt to exploitdb_all.txt
f615dee update exploitdb path lists
0775e20 combined exploit_db.txt
ae9e595 update README.md
8c81344 update pathBrute to include more exploitdb path lists
316c53c exploitdb_perl.txt
7492c41 update exploitdb_cfm.txt
ebe3aad update exploitdb_cfm.txt
f95c6b3 update exploitdb_cgi.txt
fac4010 update exploitdb_cgi.txt
9a71c15 add exploitdb_cgi.txt
4b86f6b add exploitdb_aspx.txt
77ad674 add exploitdb_php.txt
ea01a11 add exploitdb_jsp.txt
3a437ab add exploitdb_asp.txt
7476814 add exploitdb -php URI paths
099294a update README.md
f6683e0 update README.md
58fcb4d update exploit_db.txt - 9285 count
ac0b472 update exploit_db.txt
9590f8d add wip exploitdb path list and fix bug where each URI path was tested twice against target
4284bf0 add version check for Drupal CVE-2018-7600
f31a082 remove compiled binaries from repo. download from releases section
4bc229e update exploit_db.txt
2d3fb25 URI paths from exploitdb
1aeae5f update README.md
31673b4 update README.md
ffef203 update README.md
239517c update README.md
4e42acd update README.md
5c9582b add other platform executables
e07c93f fix [%d of %d] counter
4f3493b update README.md
d0b95bf update README.md
5571b5a remove /index.html from defaultPaths.txt
f7f8ce5 add CTRL-C intercept
aa7cc67 update defaultPaths.txt
bb57b00 fix minor bug
f87f5b0 update README
218b527 update README
d5e52cc change -f to -U and add in new argument -u
7e63f04 update README.md
ff23767 update README.md
f8de0c7 update pathBrute - add new wordlist
fcd2a28 add defaultPaths.txt
e15b161 update README
06d36d0 first commit for pathBrute