Skip to content

Commit

Permalink
v2.5 - see CHANGELOG.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@xnl-h4ck3r
xnl-h4ck3r committed Nov 19, 2022
1 parent 22d7af7 commit fc67d12
Show file tree
Hide file tree
Showing 4 changed files with 51 additions and 8 deletions.
6 changes: 6 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
## Changelog

- v2.5

- New

- Add `-mtl`/`--max-time-limit` argument (default: 0). This is the maximum number of minutes to run before stopping. If a value of 0 is passed, there is no limit.

- v2.4

- Changed
Expand Down
5 changes: 3 additions & 2 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
<center><img src="https://github.com/xnl-h4ck3r/xnLinkFinder/blob/main/xnLinkFinder/images/title.png"></center>

## About - v2.4
## About - v2.5

This is a tool used to discover endpoints (and potential parameters) for a given target. It can find them by:

Expand Down Expand Up @@ -51,9 +51,10 @@ $ sudo python setup.py install
| -sTO || Stop when > 95 percent of requests time out (default: false) |
| -sCE || Stop when > 95 percent of requests have connection errors (default: false) |
| -m | --memory-threshold | The memory threshold percentage. If the machines memory goes above the threshold, the program will be stopped and ended gracefully before running out of memory (default: 95) |
| -mfs | --max-file-size † | The maximum file size (in bytes) of a file to be checked if -i is a directory. If the file size os over, it will be ignored (default: 500 MB). Setting to 0 means no files will be ignored, regardless of size.. |
| -mfs | --max-file-size † | The maximum file size (in bytes) of a file to be checked if -i is a directory. If the file size os over, it will be ignored (default: 500 MB). Setting to 0 means no files will be ignored, regardless of size. |
| -replay-proxy || For active link finding with URL (or file of URLs), replay the requests through this proxy. |
| -ascii-only | | Whether links and parameters will only be added if they only contain ASCII characters. This can be useful when you know the target is likely to use ASCII characters and you also get a number of false positives from binary files for some reason. |
| -mtl | --max-time-limit | The maximum time limit (in minutes) to run before stopping (default: 0). If 0 is passed, there is no limit. |
| -v | --verbose | Verbose output |
| -vv | --vverbose | Increased verbose output |
| | --version | Show current version number. |
Expand Down
46 changes: 41 additions & 5 deletions xnLinkFinder.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,9 @@
import sys
from urllib.parse import urlparse
from tempfile import NamedTemporaryFile
from datetime import datetime

startDateTime = datetime.now()

# Try to import psutil to show memory usage
try:
Expand All @@ -75,6 +78,7 @@ class StopProgram(enum.Enum):
TOO_MANY_TIMEOUTS = 4
TOO_MANY_CONNECTION_ERRORS = 5
MEMORY_THRESHOLD = 6
MAX_TIME_LIMIT = 7


stopProgram = None
Expand Down Expand Up @@ -758,6 +762,9 @@ def getMemory():
if currentMemPercent > args.memory_threshold:
stopProgram = StopProgram.MEMORY_THRESHOLD

# If memory limit hasn't been reached, check the max time limit
if stopProgram is None:
checkMaxTimeLimit()

def shouldMakeRequest(url):
# Should we request this url?
Expand All @@ -773,8 +780,8 @@ def shouldMakeRequest(url):

def processUrl(url):

global burpFile, zapFile, totalRequests, skippedRequests, failedRequests, userAgent, requestHeaders, tooManyRequests, tooManyForbidden, tooManyTimeouts, tooManyConnectionErrors, stopProgram, waymoreMode

global burpFile, zapFile, totalRequests, skippedRequests, failedRequests, userAgent, requestHeaders, tooManyRequests, tooManyForbidden, tooManyTimeouts, tooManyConnectionErrors, stopProgram, waymoreMode, stopProgram
# Choose a random user agent string to use from the current group
userAgent = random.choice(userAgents[currentUAGroup])
requestHeaders["User-Agent"] = userAgent
Expand Down Expand Up @@ -1650,6 +1657,9 @@ def showOptions():
+ colored(" Whether links and parameters will only be added if they only contain ASCII characters.", "white")
)

if args.max_time_limit > 0:
write(colored('-mtl: ' + str(args.max_time_limit), 'magenta')+colored(" The maximum time limit (in minutes) to run before stopping.","white"))

write(colored('Link exclusions: ', 'magenta')+colored(LINK_EXCLUSIONS))
write(colored('Content-Type exclusions: ', 'magenta')+colored(CONTENTTYPE_EXCLUSIONS))
if dirPassed:
Expand Down Expand Up @@ -2243,8 +2253,11 @@ def processEachInput(input):
"""
Process the input, whether its from -i or <stdin>
"""
global burpFile, zapFile, urlPassed, stdFile, stdinFile, dirPassed, stdinMultiple, linksFound, linksVisited, totalRequests, skippedRequests, failedRequests, paramsFound, waymoreMode
global burpFile, zapFile, urlPassed, stdFile, stdinFile, dirPassed, stdinMultiple, linksFound, linksVisited, totalRequests, skippedRequests, failedRequests, paramsFound, waymoreMode, stopProgram

if stopProgram is None:
checkMaxTimeLimit()

# Set the -i / --input to the current input
args.input = input

Expand Down Expand Up @@ -2733,7 +2746,14 @@ def getSPACER(text):
SPACER = " " * lenSpacer
return text + SPACER


# Check if the maximum time limit argument was passed and if it has been exceeded
def checkMaxTimeLimit():
global startDateTime, stopProgram
if stopProgram is None and args.max_time_limit > 0:
runTime = datetime.now() - startDateTime
if runTime.seconds / 60 > args.max_time_limit:
stopProgram = StopProgram.MAX_TIME_LIMIT

# Run xnLinkFinder
if __name__ == "__main__":

Expand Down Expand Up @@ -2929,6 +2949,15 @@ def getSPACER(text):
action="store_true",
help="Whether links and parameters will only be added if they only contain ASCII characters (default: False). This can be useful when you know the target is likely to use ASCII characters and you also get a number of false positives from binary files for some reason.",
)
parser.add_argument(
"-mtl",
"--max-time-limit",
action="store",
help="The maximum time limit (in minutes) to run before stopping (default: 0). If 0 is passed, there is no limit.",
type=int,
default=0,
metavar="<integer>",
)
parser.add_argument("-v", "--verbose", action="store_true", help="Verbose output")
parser.add_argument(
"-vv", "--vverbose", action="store_true", help="Increased verbose output"
Expand Down Expand Up @@ -2967,7 +2996,7 @@ def getSPACER(text):

# Set User Agents to use
setUserAgents()

# Process each user agent group
for i in range(len(userAgents)):
if stopProgram is not None:
Expand Down Expand Up @@ -3052,6 +3081,13 @@ def getSPACER(text):
"red",
)
)
elif stopProgram == StopProgram.MAX_TIME_LIMIT:
writerr(
colored(
"THE PROGRAM WAS STOPPED DUE TO TOO MAXIMUM TIME LIMIT. DATA IS LIKELY TO BE INCOMPLETE.\n",
"red",
)
)
else:
writerr(
colored(
Expand Down
2 changes: 1 addition & 1 deletion xnLinkFinder/__init__.py
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
__version__="2.4"
__version__="2.5"

0 comments on commit fc67d12

Please sign in to comment.