Skip to content

Commit

Permalink
Merge pull request #5 from 0xPugal/test
Browse files Browse the repository at this point in the history 
knoxsser v1.1 update
  • Loading branch information
@0xPugal
0xPugal authored May 22, 2024
2 parents 38a87e5 + 6b4f8e7 commit f64ec5e
Show file tree
Hide file tree
Showing 3 changed files with 88 additions and 78 deletions.
5 changes: 5 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,8 @@
+ v1.1
- Add ``Ctrl-C`` option to stop the scan and save remaining urls in a ``todo_file``
- Modify script to save urls which encounter erros due to error in knoxss api are saved in ``{urls_file}.error`` file
- Beautify the way of printing output from knoxss in terminal

+ v1.0
- Temporarily removed ``Ctrl-C`` option to stop and save remaining urls due to some errors
- Temporarily removed ``$api_calls`` option due to some errors
Expand Down
13 changes: 7 additions & 6 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# KNOXSSer v1.0
# KNOXSSer v1.1
**A concise and effective bash script for mass XSS scanning utilizing the KNOXSS API by Brute Logic**

<img src=KNOXSSer.png>
Expand All @@ -16,15 +16,15 @@ Options:
-A, --api API key for Knoxss
-s, --silent Print only results without displaying the banner
-n, --notify Send notifications on successful XSSes via notify
-p, --process Number of URLs to scan parallely (1-5) (default: 3)
-p, --process Number of URLs to scan parallely (1-5) (default: 1)
-h, --help Display this help message and exit
-v, --version Display the version and exit
```

## Features
- Enables scanning of both single URLs and files containing multiple URLs
- Unscanned URLs are saved in a `<input>+date-time.todo` file, providing a record of URLs not successfully scanned along with a timestamp.
- URLs that encountered timeouts or errors during scanning, possibly due to issues with the KNOXSS API, are saved in a `<input>-errors.todo` file.
- URLs that encountered timeouts or errors during scanning, possibly due to issues with the KNOXSS API, are saved in a `<input>.errors` file.
- Successful XSS results are saved by default in `xss.txt`, with their full JSON responses.
- Prints the number of API calls made during the scanning process.
- Send notifications on successful XSSes through notify
Expand All @@ -49,13 +49,14 @@ knoxsser -i urls.txt
```
knoxsser -i input.txt --notify
```
![knoxsser](https://github.com/0xPugal/KNOXSSer/assets/75373225/2e9878f5-d81c-479b-9be2-4ab52c3c62cf)
![knoxsser](https://github.com/0xPugal/KNOXSSer/assets/75373225/0b97af75-e1c8-410c-b4d3-8a555f0bb599)


## ToDo
+ Allow knoxsser to read input from stdin
+ Add verbose option for verbose output

## Credits
+ An amazing [KNOXSS](https://knoxss.me/) API by Brute Logic.
+ This script was inspired from the [knoxnl](https://github.com/xnl-h4ck3r/knoxnl) tool by [xnl_h4ck3r](https://twitter.com/xnl_h4ck3r).
+ Notify on successful XSS via [Project Discovery](https://github.com/projectdiscovery)'s [Notify](https://github.com/projectdiscovery/notify)
+ This script was inspired from the [knoxnl](https://github.com/xnl-h4ck3r/knoxnl) tool created by [xnl_h4ck3r](https://twitter.com/xnl_h4ck3r).
+ Notification on successful XSS via [Project Discovery](https://github.com/projectdiscovery)'s [Notify](https://github.com/projectdiscovery/notify).
148 changes: 76 additions & 72 deletions knoxsser
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ print_banner() {
echo -e "${CYAN}█████╔╝ ██╔██╗ ██║██║ ██║ ╚███╔╝ ███████╗███████╗█████╗ ██████╔╝ ${NC}"
echo -e "${CYAN}██╔═██╗ ██║╚██╗██║██║ ██║ ██╔██╗ ╚════██║╚════██║██╔══╝ ██╔══██╗ ${NC}"
echo -e "${CYAN}██║ ██╗██║ ╚████║╚██████╔╝██╔╝ ██╗███████║███████║███████╗██║ ██║ ${NC}"
echo -e "${CYAN}╚═╝ ╚═╝╚═╝ ╚═══╝ ╚═════╝ ╚═╝ ╚═╝╚══════╝╚══════╝╚══════╝╚═╝ ╚═╝v1.0 ${NC}"
echo -e "${CYAN}╚═╝ ╚═╝╚═╝ ╚═══╝ ╚═════╝ ╚═╝ ╚═╝╚══════╝╚══════╝╚══════╝╚═╝ ╚═╝v1.1 ${NC}"
echo -e "${BOLD} Made with ${RED}<3${NC} by @0xPugal ${NC}"
echo ""
}
Expand All @@ -29,10 +29,10 @@ input_type="file"
input_file=""
api_key="YOUR_KNOXSS_API_KEY"
output_file="xss.txt"
VERSION="v1.0"
VERSION="v1.1"
silent_mode=false
use_notify=false
parallel=1 # Default to scan one URL at a time
parallel_processes=1

usage() {
print_banner
Expand Down Expand Up @@ -80,15 +80,11 @@ while [[ $# -gt 0 ]]; do
shift
;;
-n|--notify)
use_notify=true
use_notify=true
shift
;;
-p|--process)
parallel="$2"
if ! [[ "$parallel" =~ ^[1-5]$ ]]; then
echo "Error: Invalid value for parallel processing. Choose between 1 to 5."
usage
fi
parallel_processes="$2"
shift
shift
;;
Expand Down Expand Up @@ -124,15 +120,31 @@ else
echo "$single_url" > "$urls_file"
fi

# Function to handle Ctrl-C interruptions
handle_ctrl_c() {
echo -e "\n${BOLD}Ctrl-C detected. Remaining URLs are saved into $todo_file...${NC}"
grep -vFf "$processed_file" "$urls_file" > "$todo_file"
rm -f "$processed_file"
exit 1
}

# Set up Ctrl-C handler
trap handle_ctrl_c INT

lineno=1
api_calls=0
todo_file="${urls_file%.*}-$(date +'%Y%m%d%H%M%S').todo"
todo_file="${urls_file}-$(date +'%Y%m%d%H%M%S').todo"
processed_file="${urls_file}-$(date +'%Y%m%d%H%M%S').processed"
error_file="${urls_file}.errors"

# Display banner unless in silent mode
# Displaying banner
if ! $silent_mode; then
print_banner
fi

# Print the number of targets to scan
echo -e "${BOLD}Scanning $(wc -l < "$urls_file") targets for XSS...${NC}\n"

# Check for a valid API key
test_response=$(curl "https://api.knoxss.pro" -d target="https://example.com" -H "X-API-KEY: $api_key" -s)

Expand All @@ -141,79 +153,71 @@ if [[ "$test_response" == "Invalid or expired API key." ]]; then
exit 1
fi

# Count the number of URLs in the file
num_urls=$(wc -l < "$urls_file")
echo -e "${CYAN}${BOLD}Scanning $num_urls URLs for XSS...${NC}"

# Main loop to scan URLs
while read -r line; do
(
response=$(curl "https://api.knoxss.pro" -d target="$line" -H "X-API-KEY: $api_key" -s)

if [[ "$response" == *"Invalid or expired API key."* ]]; then
echo -e "${RED}Invalid or expired API key. Exiting.${NC}"
exit 1

elif [[ "$response" == *"<p"* ]]; then
echo -e "${RED}[ERR] - $line - XSS is not possible in this content-type${NC} [$api_call]"

else
xss=$(jq -r '.XSS' <<< "$response")
poc=$(jq -r '.PoC' <<< "$response")
error=$(jq -r '.Error' <<< "$response")
api_call=$(jq -r '.["API Call"]' <<< "$response")

# Handle XSS detection
if [[ "$xss" == "true" ]]; then
echo -e "${GREEN}[XSS!] - $poc ${NC} [$api_call]"
echo "$response" >> "$output_file"

if [[ "$use_notify" == true ]]; then
echo "$poc" | notify -silent > /dev/null 2>&1
if [[ "$api_call" != "0" ]]; then
api_calls=$((api_calls + 1))
fi
fi

elif [[ "$xss" == "false" ]]; then
echo -e "${YELLOW}[No XSS] - $line ${NC} [$api_call]"
process_url() {
local line="$1"
local lineno="$2"

response=$(curl "https://api.knoxss.pro" -d target="$line" -H "X-API-KEY: $api_key" -s)

if [[ "$response" == *"Invalid or expired API key."* ]]; then
echo -e "${RED}Invalid or expired API key. Exiting.${NC}"
exit 1

elif [[ "$response" == *"<p"* ]]; then
echo -e "${RED}[ NOPE ] - $line - XSS is not possible in this content-type${NC} [0]"

else
xss=$(jq -r '.XSS' <<< "$response")
poc=$(jq -r '.PoC' <<< "$response")
error=$(jq -r '.Error' <<< "$response")
api_call=$(jq -r '.["API Call"]' <<< "$response")

# Handle XSS detection
if [[ "$xss" == "true" ]]; then
echo -e "${GREEN}[ XSS!! ] - $poc ${NC} [$api_call]"
echo "$response" >> "$output_file"

if [[ "$use_notify" == true ]]; then
echo "$poc" | notify -silent > /dev/null 2>&1
if [[ "$api_call" != "0" ]]; then
api_calls=$((api_calls + 1))
fi
fi

elif [[ "$error" == "KNOXSS can't test it (forbidden)" ]]; then
echo -e "${RED}[ERR] - $line - Forbidden ${NC} [$api_call]"
elif [[ "$xss" == "false" ]]; then
echo -e "${YELLOW}[ noXSS ] - $line ${NC} [$api_call]"
if [[ "$api_call" != "0" ]]; then
api_calls=$((api_calls + 1))
fi

elif [[ "$error" == "KNOXSS can't test it (forbidden)" ]]; then
echo -e "${RED}[ 403:( ] - $line - Forbidden ${NC} [$api_call]"

elif [[ "$error" == "target connection issues (timeout)" ]]; then
echo -e "${RED}[ERR] - $line - Target connection issues ${NC} [$api_call]"
elif [[ "$error" == "target connection issues (timeout)" ]]; then
echo -e "${RED}[ ERROR ] - $line - Target connection issues ${NC} [$api_call]"

elif [[ "$error" == "KNOXSS can't finish scan gracefully (reason unknown)" ]]; then
echo -e "${RED}[ERR] - $line - can't finish scan gracefully${NC} [$api_call]"
echo "$line" >> "$todo_file"
elif [[ "$error" == "KNOXSS can't finish scan gracefully (reason unknown)" ]]; then
echo -e "${RED}[ ERROR ] - $line - can't finish scan gracefully${NC} [$api_call]"
echo -e "$line" >> "$error_file"

else
echo -e "${RED}[ERR] - $line - Unknown error ${NC} [$api_call]"
echo "$line" >> "$todo_file"
fi
else
echo -e "${RED}[ERR] - $line - Unknown error ${NC} [$api_call]"
echo "$line" >> "$error_file"
fi
) &

# Limit number of parallel processes based on user input
if [[ $(jobs -r -p | wc -l) -ge "$parallel" ]]; then
wait -n
fi

sleep 2 # Delay between API calls to avoid rate limiting
lineno=$((lineno + 1))
done < "$urls_file"
echo "$line" >> "$processed_file"
}

# Wait for all remaining background processes to finish
wait
# Setup for parallel processing
export -f process_url
export api_key output_file use_notify todo_file processed_file error_file CYAN GREEN RED YELLOW BOLD NC

# Start processing URLs in parallel
parallel -j "$parallel_processes" process_url :::: "$urls_file"

# Final summary
echo "If any URLs that encountered errors are saved into $todo_file"
echo -e "\nIf any URLs that encountered errors are saved into $error_file"

# Cleanup temporary files if needed
if [[ "$input_type" == "url" ]]; then
rm "$urls_file"
fi
rm -f "$processed_file"

0 comments on commit f64ec5e

Please sign in to comment.