Fork: 0
0xRoM / CHaS
Transfer to URL with SHA Find file
Newer
Older
CHaS / CHaS.pl
root on 7 May 2019 2 KB Initial commit
Raw Blame History 
  1. #!/usr/bin/perl
  2. # By NaN
  3. #
  4. #   Requirements:
  5. #       aha              https://github.com/masukomi/aha 
  6. #       sslscan          https://github.com/rbsec/sslscan 
  7. #       testssl          https://github.com/drwetter/testssl.sh
  8. #       securityheaders  https://github.com/juerkkil/securityheaders
  9.  
  10. use strict;
  11. use warnings;
  12.  
  13.  
  14. my $sslscan = "sslscan";                                  # command or path to sslscan
  15. my $testssl = "/opt/testssl.sh/testssl.sh";               # command or path to testssl.sh
  16. my $headers = "/opt/securityheaders/securityheaders.py";  # securityheaders 
  17. my $aha     = "aha";                                      # command or path to aha
  18. my $browser = "thunar";                                   # your file browser - remove to disable
  19.  
  20. if($#ARGV < 1){
  21.         print "Check Headers and SSL v0.1\n";
  22.         print "Usage: ./CHaS.pl </full/directory/path> <https://www.url.com>\n";
  23.         exit(-1);
  24. }else{
  25.         
  26.         my $dir = $ARGV[0];
  27.         my $url = $ARGV[1]; 
  28.         my @children_pids;
  29.  
  30.         if($url =~ /^(?:(?:https?|s))/i){}else{
  31.                 die "[!] Not a valid URL!\n";
  32.         }
  33.  
  34.         print "[i] Directory: $dir \n";
  35.         print "[i] URL: $url \n";
  36.  
  37.         print "[+] Creating Directory\n";
  38.         unless(mkdir($dir, 0755)) {
  39.                 die "[!] Unable to create!\n";
  40.         }
  41.  
  42.         my $pid = fork();
  43.         if( $pid == 0 ){
  44.                 push @children_pids, $pid;
  45.                 print "[+] Launching SSLScan\n";
  46.                 system("$sslscan $url | aha >$dir/sslscan.html");
  47.                 print "[+] Finished SSLScan\n";
  48.                 exit 0;
  49.         }
  50.  
  51.         my $pid2 = fork();
  52.         if( $pid2 == 0 ){
  53.                 push @children_pids, $pid2;
  54.                 print "[+] Launching testssl.sh\n";
  55.                 system("$testssl $url | aha >$dir/testssl.html");
  56.                 print "[+] Finished testssl.sh\n";
  57.                 exit 0;
  58.         }
  59.  
  60.         my $pid3 = fork();
  61.         if( $pid3 == 0 ){
  62.                 push @children_pids, $pid3;
  63.                 print "[+] Checking Headers\n";
  64.                 system(" echo \"curl -Is --insecure $url\n\" > $dir/headers.txt");
  65.                 system("curl -Is --insecure $url >> $dir/headers.txt");
  66.                 system("python $headers $url | aha >$dir/headers.html");
  67.                 print "[+] Finished Headers\n";
  68.                 exit 0;
  69.         }
  70.  
  71.         my $loop = 1;
  72.         $SIG{CHLD} = 'DEFAULT';  # turn off auto reaper
  73.         $SIG{INT} = $SIG{TERM} = sub {$loop = 0; kill -15 => @children_pids};
  74.         while ($loop && getppid() != 1) {
  75.                 my $child = waitpid(-1, 0);
  76.                 last if $child == -1;
  77.         }
  78.  
  79.         if( length $browser ){
  80.                 print "[!] Launching file browser\n"; 
  81.                 system("$browser $dir &");      
  82.         }else{
  83.              print "[!] Complete\n";   
  84.         }
  85.         exit();
  86. }
  87.  
Buy Me A Coffee