About ppmap
Ppmap is a vulnerability scanner/exploit tool developed based on Go that can scan, detect, and exploit XSS vulnerabilities by examining specific variables in a global context. The tool currently only exploits security issues in known gadgets (which may support some custom developed gadgets), but does not support code analysis or any advanced vulnerability scanning/exploitation methods.
【For more information】
The working process
Use heuristic scanning to determine whether a site is vulnerable to attack;
Fingerprint known widgets (check for specific variables in the global context);
Displays final exploit and is ready to execute XSS attack;
Tools rely on
First, we need to make sure Chromium/Chrome is properly installed:
sudo sh -c 'echo "deb http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google.list'
wget -q -O - https://dl-ssl.google.com/linux/linux_signing_key.pub | sudo apt-key add -
sudo apt-get update
sudo apt-get install google-chrome-stable
Copy the codeNext, we need to install chromedp:
go get -u github.com/chromedp/chromedp
Copy the codeTools installation
Automatic installation
First, click [here] to download the compiled project code.
Next, switch to the project directory and give the program executable permissions:
chmod +x ppmap
Copy the codeManual installation
First, we need to clone the project source locally using the following command:
git clone https://github.com/kleiton0x00/ppmap.git
Copy the codeSwitch to project directory:
cd ~/ppmap
Copy the codeBuild the project code with the following commands:
go build ppmap.go
Copy the codeTool use
The tool is very simple to use and we can perform a simple scan in two ways:
1. Scan a directory/file (or scan the website itself) :
echo 'https://target.com' | ./ppmap
Copy the code2. Scan a terminal node:
echo 'http://target.com/something/?page=home' | ./ppmap
Copy the codeLarge scale scanning
cat url.txt | ./ppmap
Copy the codeTXT is a list file containing all target URL addresses.
Tool run demo
Follow me and keep me updated
Private I get [network security learning materials · Walkthrough]