CacheBoom/cacheboom.py at main · omranisecurity/CacheBoom · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
#!/usr/bin/env python3

import argparse
from input_handlers.main_handler import loader
from utils.banner import show_banner

def main():
    parser = argparse.ArgumentParser(prog='CacheBoom!', description='A tool for detecting Web Cache Deception and Web Cache Poisoning vulnerabilities.', epilog='version: 0.8.2')
    parser.add_argument('-u', '--url', type=str, help="example: https://www.google.com")
    parser.add_argument('-r', '--raw_request', type=str, help="example: ~/raw_request.txt")
    parser.add_argument('-l', '--list', type=str, help="example: ~/urls.txt")
    parser.add_argument('-c', '--cookie', type=str, default=None ,help="example: name=value; name2=value2")
    parser.add_argument('-m', '--mode', choices=['cd', 'cp'], required=True, help="choose scan mode")
    parser.add_argument('-t', '--thread', type=int, default=10, help="number of threads to use (default: 10)")
    parser.add_argument('-s', '--silent', action='store_true', default=None, help="show only result in output")
    parser.add_argument('-o', '--output', type=str, default=None, help="output file to save results")
    args = parser.parse_args()

    if not args.silent:
        show_banner()

    try:
        loader(
                url=args.url,
                raw_request=args.raw_request,
                list=args.list,
                cookie=args.cookie,
                mode=args.mode,
                thread=args.thread,
                silent=args.silent,
                output=args.output
            )

    except KeyboardInterrupt:
        print("\n[!] Scan interrupted by user (Ctrl+C). Exiting...")

if __name__ == '__main__':
    main()