├── LICENSE
├── README.md
├── _config.yml
├── bughunter.php
├── bughunter.py
└── install.sh


/LICENSE:
--------------------------------------------------------------------------------
  1 |                     GNU GENERAL PUBLIC LICENSE
  2 |                        Version 3, 29 June 2007
  3 | 
  4 |  Copyright (C) 2007 Free Software Foundation, Inc. <https://fsf.org/>
  5 |  Everyone is permitted to copy and distribute verbatim copies
  6 |  of this license document, but changing it is not allowed.
  7 | 
  8 |                             Preamble
  9 | 
 10 |   The GNU General Public License is a free, copyleft license for
 11 | software and other kinds of works.
 12 | 
 13 |   The licenses for most software and other practical works are designed
 14 | to take away your freedom to share and change the works.  By contrast,
 15 | the GNU General Public License is intended to guarantee your freedom to
 16 | share and change all versions of a program--to make sure it remains free
 17 | software for all its users.  We, the Free Software Foundation, use the
 18 | GNU General Public License for most of our software; it applies also to
 19 | any other work released this way by its authors.  You can apply it to
 20 | your programs, too.
 21 | 
 22 |   When we speak of free software, we are referring to freedom, not
 23 | price.  Our General Public Licenses are designed to make sure that you
 24 | have the freedom to distribute copies of free software (and charge for
 25 | them if you wish), that you receive source code or can get it if you
 26 | want it, that you can change the software or use pieces of it in new
 27 | free programs, and that you know you can do these things.
 28 | 
 29 |   To protect your rights, we need to prevent others from denying you
 30 | these rights or asking you to surrender the rights.  Therefore, you have
 31 | certain responsibilities if you distribute copies of the software, or if
 32 | you modify it: responsibilities to respect the freedom of others.
 33 | 
 34 |   For example, if you distribute copies of such a program, whether
 35 | gratis or for a fee, you must pass on to the recipients the same
 36 | freedoms that you received.  You must make sure that they, too, receive
 37 | or can get the source code.  And you must show them these terms so they
 38 | know their rights.
 39 | 
 40 |   Developers that use the GNU GPL protect your rights with two steps:
 41 | (1) assert copyright on the software, and (2) offer you this License
 42 | giving you legal permission to copy, distribute and/or modify it.
 43 | 
 44 |   For the developers' and authors' protection, the GPL clearly explains
 45 | that there is no warranty for this free software.  For both users' and
 46 | authors' sake, the GPL requires that modified versions be marked as
 47 | changed, so that their problems will not be attributed erroneously to
 48 | authors of previous versions.
 49 | 
 50 |   Some devices are designed to deny users access to install or run
 51 | modified versions of the software inside them, although the manufacturer
 52 | can do so.  This is fundamentally incompatible with the aim of
 53 | protecting users' freedom to change the software.  The systematic
 54 | pattern of such abuse occurs in the area of products for individuals to
 55 | use, which is precisely where it is most unacceptable.  Therefore, we
 56 | have designed this version of the GPL to prohibit the practice for those
 57 | products.  If such problems arise substantially in other domains, we
 58 | stand ready to extend this provision to those domains in future versions
 59 | of the GPL, as needed to protect the freedom of users.
 60 | 
 61 |   Finally, every program is threatened constantly by software patents.
 62 | States should not allow patents to restrict development and use of
 63 | software on general-purpose computers, but in those that do, we wish to
 64 | avoid the special danger that patents applied to a free program could
 65 | make it effectively proprietary.  To prevent this, the GPL assures that
 66 | patents cannot be used to render the program non-free.
 67 | 
 68 |   The precise terms and conditions for copying, distribution and
 69 | modification follow.
 70 | 
 71 |                        TERMS AND CONDITIONS
 72 | 
 73 |   0. Definitions.
 74 | 
 75 |   "This License" refers to version 3 of the GNU General Public License.
 76 | 
 77 |   "Copyright" also means copyright-like laws that apply to other kinds of
 78 | works, such as semiconductor masks.
 79 | 
 80 |   "The Program" refers to any copyrightable work licensed under this
 81 | License.  Each licensee is addressed as "you".  "Licensees" and
 82 | "recipients" may be individuals or organizations.
 83 | 
 84 |   To "modify" a work means to copy from or adapt all or part of the work
 85 | in a fashion requiring copyright permission, other than the making of an
 86 | exact copy.  The resulting work is called a "modified version" of the
 87 | earlier work or a work "based on" the earlier work.
 88 | 
 89 |   A "covered work" means either the unmodified Program or a work based
 90 | on the Program.
 91 | 
 92 |   To "propagate" a work means to do anything with it that, without
 93 | permission, would make you directly or secondarily liable for
 94 | infringement under applicable copyright law, except executing it on a
 95 | computer or modifying a private copy.  Propagation includes copying,
 96 | distribution (with or without modification), making available to the
 97 | public, and in some countries other activities as well.
 98 | 
 99 |   To "convey" a work means any kind of propagation that enables other
100 | parties to make or receive copies.  Mere interaction with a user through
101 | a computer network, with no transfer of a copy, is not conveying.
102 | 
103 |   An interactive user interface displays "Appropriate Legal Notices"
104 | to the extent that it includes a convenient and prominently visible
105 | feature that (1) displays an appropriate copyright notice, and (2)
106 | tells the user that there is no warranty for the work (except to the
107 | extent that warranties are provided), that licensees may convey the
108 | work under this License, and how to view a copy of this License.  If
109 | the interface presents a list of user commands or options, such as a
110 | menu, a prominent item in the list meets this criterion.
111 | 
112 |   1. Source Code.
113 | 
114 |   The "source code" for a work means the preferred form of the work
115 | for making modifications to it.  "Object code" means any non-source
116 | form of a work.
117 | 
118 |   A "Standard Interface" means an interface that either is an official
119 | standard defined by a recognized standards body, or, in the case of
120 | interfaces specified for a particular programming language, one that
121 | is widely used among developers working in that language.
122 | 
123 |   The "System Libraries" of an executable work include anything, other
124 | than the work as a whole, that (a) is included in the normal form of
125 | packaging a Major Component, but which is not part of that Major
126 | Component, and (b) serves only to enable use of the work with that
127 | Major Component, or to implement a Standard Interface for which an
128 | implementation is available to the public in source code form.  A
129 | "Major Component", in this context, means a major essential component
130 | (kernel, window system, and so on) of the specific operating system
131 | (if any) on which the executable work runs, or a compiler used to
132 | produce the work, or an object code interpreter used to run it.
133 | 
134 |   The "Corresponding Source" for a work in object code form means all
135 | the source code needed to generate, install, and (for an executable
136 | work) run the object code and to modify the work, including scripts to
137 | control those activities.  However, it does not include the work's
138 | System Libraries, or general-purpose tools or generally available free
139 | programs which are used unmodified in performing those activities but
140 | which are not part of the work.  For example, Corresponding Source
141 | includes interface definition files associated with source files for
142 | the work, and the source code for shared libraries and dynamically
143 | linked subprograms that the work is specifically designed to require,
144 | such as by intimate data communication or control flow between those
145 | subprograms and other parts of the work.
146 | 
147 |   The Corresponding Source need not include anything that users
148 | can regenerate automatically from other parts of the Corresponding
149 | Source.
150 | 
151 |   The Corresponding Source for a work in source code form is that
152 | same work.
153 | 
154 |   2. Basic Permissions.
155 | 
156 |   All rights granted under this License are granted for the term of
157 | copyright on the Program, and are irrevocable provided the stated
158 | conditions are met.  This License explicitly affirms your unlimited
159 | permission to run the unmodified Program.  The output from running a
160 | covered work is covered by this License only if the output, given its
161 | content, constitutes a covered work.  This License acknowledges your
162 | rights of fair use or other equivalent, as provided by copyright law.
163 | 
164 |   You may make, run and propagate covered works that you do not
165 | convey, without conditions so long as your license otherwise remains
166 | in force.  You may convey covered works to others for the sole purpose
167 | of having them make modifications exclusively for you, or provide you
168 | with facilities for running those works, provided that you comply with
169 | the terms of this License in conveying all material for which you do
170 | not control copyright.  Those thus making or running the covered works
171 | for you must do so exclusively on your behalf, under your direction
172 | and control, on terms that prohibit them from making any copies of
173 | your copyrighted material outside their relationship with you.
174 | 
175 |   Conveying under any other circumstances is permitted solely under
176 | the conditions stated below.  Sublicensing is not allowed; section 10
177 | makes it unnecessary.
178 | 
179 |   3. Protecting Users' Legal Rights From Anti-Circumvention Law.
180 | 
181 |   No covered work shall be deemed part of an effective technological
182 | measure under any applicable law fulfilling obligations under article
183 | 11 of the WIPO copyright treaty adopted on 20 December 1996, or
184 | similar laws prohibiting or restricting circumvention of such
185 | measures.
186 | 
187 |   When you convey a covered work, you waive any legal power to forbid
188 | circumvention of technological measures to the extent such circumvention
189 | is effected by exercising rights under this License with respect to
190 | the covered work, and you disclaim any intention to limit operation or
191 | modification of the work as a means of enforcing, against the work's
192 | users, your or third parties' legal rights to forbid circumvention of
193 | technological measures.
194 | 
195 |   4. Conveying Verbatim Copies.
196 | 
197 |   You may convey verbatim copies of the Program's source code as you
198 | receive it, in any medium, provided that you conspicuously and
199 | appropriately publish on each copy an appropriate copyright notice;
200 | keep intact all notices stating that this License and any
201 | non-permissive terms added in accord with section 7 apply to the code;
202 | keep intact all notices of the absence of any warranty; and give all
203 | recipients a copy of this License along with the Program.
204 | 
205 |   You may charge any price or no price for each copy that you convey,
206 | and you may offer support or warranty protection for a fee.
207 | 
208 |   5. Conveying Modified Source Versions.
209 | 
210 |   You may convey a work based on the Program, or the modifications to
211 | produce it from the Program, in the form of source code under the
212 | terms of section 4, provided that you also meet all of these conditions:
213 | 
214 |     a) The work must carry prominent notices stating that you modified
215 |     it, and giving a relevant date.
216 | 
217 |     b) The work must carry prominent notices stating that it is
218 |     released under this License and any conditions added under section
219 |     7.  This requirement modifies the requirement in section 4 to
220 |     "keep intact all notices".
221 | 
222 |     c) You must license the entire work, as a whole, under this
223 |     License to anyone who comes into possession of a copy.  This
224 |     License will therefore apply, along with any applicable section 7
225 |     additional terms, to the whole of the work, and all its parts,
226 |     regardless of how they are packaged.  This License gives no
227 |     permission to license the work in any other way, but it does not
228 |     invalidate such permission if you have separately received it.
229 | 
230 |     d) If the work has interactive user interfaces, each must display
231 |     Appropriate Legal Notices; however, if the Program has interactive
232 |     interfaces that do not display Appropriate Legal Notices, your
233 |     work need not make them do so.
234 | 
235 |   A compilation of a covered work with other separate and independent
236 | works, which are not by their nature extensions of the covered work,
237 | and which are not combined with it such as to form a larger program,
238 | in or on a volume of a storage or distribution medium, is called an
239 | "aggregate" if the compilation and its resulting copyright are not
240 | used to limit the access or legal rights of the compilation's users
241 | beyond what the individual works permit.  Inclusion of a covered work
242 | in an aggregate does not cause this License to apply to the other
243 | parts of the aggregate.
244 | 
245 |   6. Conveying Non-Source Forms.
246 | 
247 |   You may convey a covered work in object code form under the terms
248 | of sections 4 and 5, provided that you also convey the
249 | machine-readable Corresponding Source under the terms of this License,
250 | in one of these ways:
251 | 
252 |     a) Convey the object code in, or embodied in, a physical product
253 |     (including a physical distribution medium), accompanied by the
254 |     Corresponding Source fixed on a durable physical medium
255 |     customarily used for software interchange.
256 | 
257 |     b) Convey the object code in, or embodied in, a physical product
258 |     (including a physical distribution medium), accompanied by a
259 |     written offer, valid for at least three years and valid for as
260 |     long as you offer spare parts or customer support for that product
261 |     model, to give anyone who possesses the object code either (1) a
262 |     copy of the Corresponding Source for all the software in the
263 |     product that is covered by this License, on a durable physical
264 |     medium customarily used for software interchange, for a price no
265 |     more than your reasonable cost of physically performing this
266 |     conveying of source, or (2) access to copy the
267 |     Corresponding Source from a network server at no charge.
268 | 
269 |     c) Convey individual copies of the object code with a copy of the
270 |     written offer to provide the Corresponding Source.  This
271 |     alternative is allowed only occasionally and noncommercially, and
272 |     only if you received the object code with such an offer, in accord
273 |     with subsection 6b.
274 | 
275 |     d) Convey the object code by offering access from a designated
276 |     place (gratis or for a charge), and offer equivalent access to the
277 |     Corresponding Source in the same way through the same place at no
278 |     further charge.  You need not require recipients to copy the
279 |     Corresponding Source along with the object code.  If the place to
280 |     copy the object code is a network server, the Corresponding Source
281 |     may be on a different server (operated by you or a third party)
282 |     that supports equivalent copying facilities, provided you maintain
283 |     clear directions next to the object code saying where to find the
284 |     Corresponding Source.  Regardless of what server hosts the
285 |     Corresponding Source, you remain obligated to ensure that it is
286 |     available for as long as needed to satisfy these requirements.
287 | 
288 |     e) Convey the object code using peer-to-peer transmission, provided
289 |     you inform other peers where the object code and Corresponding
290 |     Source of the work are being offered to the general public at no
291 |     charge under subsection 6d.
292 | 
293 |   A separable portion of the object code, whose source code is excluded
294 | from the Corresponding Source as a System Library, need not be
295 | included in conveying the object code work.
296 | 
297 |   A "User Product" is either (1) a "consumer product", which means any
298 | tangible personal property which is normally used for personal, family,
299 | or household purposes, or (2) anything designed or sold for incorporation
300 | into a dwelling.  In determining whether a product is a consumer product,
301 | doubtful cases shall be resolved in favor of coverage.  For a particular
302 | product received by a particular user, "normally used" refers to a
303 | typical or common use of that class of product, regardless of the status
304 | of the particular user or of the way in which the particular user
305 | actually uses, or expects or is expected to use, the product.  A product
306 | is a consumer product regardless of whether the product has substantial
307 | commercial, industrial or non-consumer uses, unless such uses represent
308 | the only significant mode of use of the product.
309 | 
310 |   "Installation Information" for a User Product means any methods,
311 | procedures, authorization keys, or other information required to install
312 | and execute modified versions of a covered work in that User Product from
313 | a modified version of its Corresponding Source.  The information must
314 | suffice to ensure that the continued functioning of the modified object
315 | code is in no case prevented or interfered with solely because
316 | modification has been made.
317 | 
318 |   If you convey an object code work under this section in, or with, or
319 | specifically for use in, a User Product, and the conveying occurs as
320 | part of a transaction in which the right of possession and use of the
321 | User Product is transferred to the recipient in perpetuity or for a
322 | fixed term (regardless of how the transaction is characterized), the
323 | Corresponding Source conveyed under this section must be accompanied
324 | by the Installation Information.  But this requirement does not apply
325 | if neither you nor any third party retains the ability to install
326 | modified object code on the User Product (for example, the work has
327 | been installed in ROM).
328 | 
329 |   The requirement to provide Installation Information does not include a
330 | requirement to continue to provide support service, warranty, or updates
331 | for a work that has been modified or installed by the recipient, or for
332 | the User Product in which it has been modified or installed.  Access to a
333 | network may be denied when the modification itself materially and
334 | adversely affects the operation of the network or violates the rules and
335 | protocols for communication across the network.
336 | 
337 |   Corresponding Source conveyed, and Installation Information provided,
338 | in accord with this section must be in a format that is publicly
339 | documented (and with an implementation available to the public in
340 | source code form), and must require no special password or key for
341 | unpacking, reading or copying.
342 | 
343 |   7. Additional Terms.
344 | 
345 |   "Additional permissions" are terms that supplement the terms of this
346 | License by making exceptions from one or more of its conditions.
347 | Additional permissions that are applicable to the entire Program shall
348 | be treated as though they were included in this License, to the extent
349 | that they are valid under applicable law.  If additional permissions
350 | apply only to part of the Program, that part may be used separately
351 | under those permissions, but the entire Program remains governed by
352 | this License without regard to the additional permissions.
353 | 
354 |   When you convey a copy of a covered work, you may at your option
355 | remove any additional permissions from that copy, or from any part of
356 | it.  (Additional permissions may be written to require their own
357 | removal in certain cases when you modify the work.)  You may place
358 | additional permissions on material, added by you to a covered work,
359 | for which you have or can give appropriate copyright permission.
360 | 
361 |   Notwithstanding any other provision of this License, for material you
362 | add to a covered work, you may (if authorized by the copyright holders of
363 | that material) supplement the terms of this License with terms:
364 | 
365 |     a) Disclaiming warranty or limiting liability differently from the
366 |     terms of sections 15 and 16 of this License; or
367 | 
368 |     b) Requiring preservation of specified reasonable legal notices or
369 |     author attributions in that material or in the Appropriate Legal
370 |     Notices displayed by works containing it; or
371 | 
372 |     c) Prohibiting misrepresentation of the origin of that material, or
373 |     requiring that modified versions of such material be marked in
374 |     reasonable ways as different from the original version; or
375 | 
376 |     d) Limiting the use for publicity purposes of names of licensors or
377 |     authors of the material; or
378 | 
379 |     e) Declining to grant rights under trademark law for use of some
380 |     trade names, trademarks, or service marks; or
381 | 
382 |     f) Requiring indemnification of licensors and authors of that
383 |     material by anyone who conveys the material (or modified versions of
384 |     it) with contractual assumptions of liability to the recipient, for
385 |     any liability that these contractual assumptions directly impose on
386 |     those licensors and authors.
387 | 
388 |   All other non-permissive additional terms are considered "further
389 | restrictions" within the meaning of section 10.  If the Program as you
390 | received it, or any part of it, contains a notice stating that it is
391 | governed by this License along with a term that is a further
392 | restriction, you may remove that term.  If a license document contains
393 | a further restriction but permits relicensing or conveying under this
394 | License, you may add to a covered work material governed by the terms
395 | of that license document, provided that the further restriction does
396 | not survive such relicensing or conveying.
397 | 
398 |   If you add terms to a covered work in accord with this section, you
399 | must place, in the relevant source files, a statement of the
400 | additional terms that apply to those files, or a notice indicating
401 | where to find the applicable terms.
402 | 
403 |   Additional terms, permissive or non-permissive, may be stated in the
404 | form of a separately written license, or stated as exceptions;
405 | the above requirements apply either way.
406 | 
407 |   8. Termination.
408 | 
409 |   You may not propagate or modify a covered work except as expressly
410 | provided under this License.  Any attempt otherwise to propagate or
411 | modify it is void, and will automatically terminate your rights under
412 | this License (including any patent licenses granted under the third
413 | paragraph of section 11).
414 | 
415 |   However, if you cease all violation of this License, then your
416 | license from a particular copyright holder is reinstated (a)
417 | provisionally, unless and until the copyright holder explicitly and
418 | finally terminates your license, and (b) permanently, if the copyright
419 | holder fails to notify you of the violation by some reasonable means
420 | prior to 60 days after the cessation.
421 | 
422 |   Moreover, your license from a particular copyright holder is
423 | reinstated permanently if the copyright holder notifies you of the
424 | violation by some reasonable means, this is the first time you have
425 | received notice of violation of this License (for any work) from that
426 | copyright holder, and you cure the violation prior to 30 days after
427 | your receipt of the notice.
428 | 
429 |   Termination of your rights under this section does not terminate the
430 | licenses of parties who have received copies or rights from you under
431 | this License.  If your rights have been terminated and not permanently
432 | reinstated, you do not qualify to receive new licenses for the same
433 | material under section 10.
434 | 
435 |   9. Acceptance Not Required for Having Copies.
436 | 
437 |   You are not required to accept this License in order to receive or
438 | run a copy of the Program.  Ancillary propagation of a covered work
439 | occurring solely as a consequence of using peer-to-peer transmission
440 | to receive a copy likewise does not require acceptance.  However,
441 | nothing other than this License grants you permission to propagate or
442 | modify any covered work.  These actions infringe copyright if you do
443 | not accept this License.  Therefore, by modifying or propagating a
444 | covered work, you indicate your acceptance of this License to do so.
445 | 
446 |   10. Automatic Licensing of Downstream Recipients.
447 | 
448 |   Each time you convey a covered work, the recipient automatically
449 | receives a license from the original licensors, to run, modify and
450 | propagate that work, subject to this License.  You are not responsible
451 | for enforcing compliance by third parties with this License.
452 | 
453 |   An "entity transaction" is a transaction transferring control of an
454 | organization, or substantially all assets of one, or subdividing an
455 | organization, or merging organizations.  If propagation of a covered
456 | work results from an entity transaction, each party to that
457 | transaction who receives a copy of the work also receives whatever
458 | licenses to the work the party's predecessor in interest had or could
459 | give under the previous paragraph, plus a right to possession of the
460 | Corresponding Source of the work from the predecessor in interest, if
461 | the predecessor has it or can get it with reasonable efforts.
462 | 
463 |   You may not impose any further restrictions on the exercise of the
464 | rights granted or affirmed under this License.  For example, you may
465 | not impose a license fee, royalty, or other charge for exercise of
466 | rights granted under this License, and you may not initiate litigation
467 | (including a cross-claim or counterclaim in a lawsuit) alleging that
468 | any patent claim is infringed by making, using, selling, offering for
469 | sale, or importing the Program or any portion of it.
470 | 
471 |   11. Patents.
472 | 
473 |   A "contributor" is a copyright holder who authorizes use under this
474 | License of the Program or a work on which the Program is based.  The
475 | work thus licensed is called the contributor's "contributor version".
476 | 
477 |   A contributor's "essential patent claims" are all patent claims
478 | owned or controlled by the contributor, whether already acquired or
479 | hereafter acquired, that would be infringed by some manner, permitted
480 | by this License, of making, using, or selling its contributor version,
481 | but do not include claims that would be infringed only as a
482 | consequence of further modification of the contributor version.  For
483 | purposes of this definition, "control" includes the right to grant
484 | patent sublicenses in a manner consistent with the requirements of
485 | this License.
486 | 
487 |   Each contributor grants you a non-exclusive, worldwide, royalty-free
488 | patent license under the contributor's essential patent claims, to
489 | make, use, sell, offer for sale, import and otherwise run, modify and
490 | propagate the contents of its contributor version.
491 | 
492 |   In the following three paragraphs, a "patent license" is any express
493 | agreement or commitment, however denominated, not to enforce a patent
494 | (such as an express permission to practice a patent or covenant not to
495 | sue for patent infringement).  To "grant" such a patent license to a
496 | party means to make such an agreement or commitment not to enforce a
497 | patent against the party.
498 | 
499 |   If you convey a covered work, knowingly relying on a patent license,
500 | and the Corresponding Source of the work is not available for anyone
501 | to copy, free of charge and under the terms of this License, through a
502 | publicly available network server or other readily accessible means,
503 | then you must either (1) cause the Corresponding Source to be so
504 | available, or (2) arrange to deprive yourself of the benefit of the
505 | patent license for this particular work, or (3) arrange, in a manner
506 | consistent with the requirements of this License, to extend the patent
507 | license to downstream recipients.  "Knowingly relying" means you have
508 | actual knowledge that, but for the patent license, your conveying the
509 | covered work in a country, or your recipient's use of the covered work
510 | in a country, would infringe one or more identifiable patents in that
511 | country that you have reason to believe are valid.
512 | 
513 |   If, pursuant to or in connection with a single transaction or
514 | arrangement, you convey, or propagate by procuring conveyance of, a
515 | covered work, and grant a patent license to some of the parties
516 | receiving the covered work authorizing them to use, propagate, modify
517 | or convey a specific copy of the covered work, then the patent license
518 | you grant is automatically extended to all recipients of the covered
519 | work and works based on it.
520 | 
521 |   A patent license is "discriminatory" if it does not include within
522 | the scope of its coverage, prohibits the exercise of, or is
523 | conditioned on the non-exercise of one or more of the rights that are
524 | specifically granted under this License.  You may not convey a covered
525 | work if you are a party to an arrangement with a third party that is
526 | in the business of distributing software, under which you make payment
527 | to the third party based on the extent of your activity of conveying
528 | the work, and under which the third party grants, to any of the
529 | parties who would receive the covered work from you, a discriminatory
530 | patent license (a) in connection with copies of the covered work
531 | conveyed by you (or copies made from those copies), or (b) primarily
532 | for and in connection with specific products or compilations that
533 | contain the covered work, unless you entered into that arrangement,
534 | or that patent license was granted, prior to 28 March 2007.
535 | 
536 |   Nothing in this License shall be construed as excluding or limiting
537 | any implied license or other defenses to infringement that may
538 | otherwise be available to you under applicable patent law.
539 | 
540 |   12. No Surrender of Others' Freedom.
541 | 
542 |   If conditions are imposed on you (whether by court order, agreement or
543 | otherwise) that contradict the conditions of this License, they do not
544 | excuse you from the conditions of this License.  If you cannot convey a
545 | covered work so as to satisfy simultaneously your obligations under this
546 | License and any other pertinent obligations, then as a consequence you may
547 | not convey it at all.  For example, if you agree to terms that obligate you
548 | to collect a royalty for further conveying from those to whom you convey
549 | the Program, the only way you could satisfy both those terms and this
550 | License would be to refrain entirely from conveying the Program.
551 | 
552 |   13. Use with the GNU Affero General Public License.
553 | 
554 |   Notwithstanding any other provision of this License, you have
555 | permission to link or combine any covered work with a work licensed
556 | under version 3 of the GNU Affero General Public License into a single
557 | combined work, and to convey the resulting work.  The terms of this
558 | License will continue to apply to the part which is the covered work,
559 | but the special requirements of the GNU Affero General Public License,
560 | section 13, concerning interaction through a network will apply to the
561 | combination as such.
562 | 
563 |   14. Revised Versions of this License.
564 | 
565 |   The Free Software Foundation may publish revised and/or new versions of
566 | the GNU General Public License from time to time.  Such new versions will
567 | be similar in spirit to the present version, but may differ in detail to
568 | address new problems or concerns.
569 | 
570 |   Each version is given a distinguishing version number.  If the
571 | Program specifies that a certain numbered version of the GNU General
572 | Public License "or any later version" applies to it, you have the
573 | option of following the terms and conditions either of that numbered
574 | version or of any later version published by the Free Software
575 | Foundation.  If the Program does not specify a version number of the
576 | GNU General Public License, you may choose any version ever published
577 | by the Free Software Foundation.
578 | 
579 |   If the Program specifies that a proxy can decide which future
580 | versions of the GNU General Public License can be used, that proxy's
581 | public statement of acceptance of a version permanently authorizes you
582 | to choose that version for the Program.
583 | 
584 |   Later license versions may give you additional or different
585 | permissions.  However, no additional obligations are imposed on any
586 | author or copyright holder as a result of your choosing to follow a
587 | later version.
588 | 
589 |   15. Disclaimer of Warranty.
590 | 
591 |   THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
592 | APPLICABLE LAW.  EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
593 | HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
594 | OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
595 | THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
596 | PURPOSE.  THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
597 | IS WITH YOU.  SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
598 | ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
599 | 
600 |   16. Limitation of Liability.
601 | 
602 |   IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
603 | WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS
604 | THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY
605 | GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE
606 | USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF
607 | DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD
608 | PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS),
609 | EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
610 | SUCH DAMAGES.
611 | 
612 |   17. Interpretation of Sections 15 and 16.
613 | 
614 |   If the disclaimer of warranty and limitation of liability provided
615 | above cannot be given local legal effect according to their terms,
616 | reviewing courts shall apply local law that most closely approximates
617 | an absolute waiver of all civil liability in connection with the
618 | Program, unless a warranty or assumption of liability accompanies a
619 | copy of the Program in return for a fee.
620 | 
621 |                      END OF TERMS AND CONDITIONS
622 | 
623 |             How to Apply These Terms to Your New Programs
624 | 
625 |   If you develop a new program, and you want it to be of the greatest
626 | possible use to the public, the best way to achieve this is to make it
627 | free software which everyone can redistribute and change under these terms.
628 | 
629 |   To do so, attach the following notices to the program.  It is safest
630 | to attach them to the start of each source file to most effectively
631 | state the exclusion of warranty; and each file should have at least
632 | the "copyright" line and a pointer to where the full notice is found.
633 | 
634 |     <one line to give the program's name and a brief idea of what it does.>
635 |     Copyright (C) <year>  <name of author>
636 | 
637 |     This program is free software: you can redistribute it and/or modify
638 |     it under the terms of the GNU General Public License as published by
639 |     the Free Software Foundation, either version 3 of the License, or
640 |     (at your option) any later version.
641 | 
642 |     This program is distributed in the hope that it will be useful,
643 |     but WITHOUT ANY WARRANTY; without even the implied warranty of
644 |     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
645 |     GNU General Public License for more details.
646 | 
647 |     You should have received a copy of the GNU General Public License
648 |     along with this program.  If not, see <https://www.gnu.org/licenses/>.
649 | 
650 | Also add information on how to contact you by electronic and paper mail.
651 | 
652 |   If the program does terminal interaction, make it output a short
653 | notice like this when it starts in an interactive mode:
654 | 
655 |     <program>  Copyright (C) <year>  <name of author>
656 |     This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
657 |     This is free software, and you are welcome to redistribute it
658 |     under certain conditions; type `show c' for details.
659 | 
660 | The hypothetical commands `show w' and `show c' should show the appropriate
661 | parts of the General Public License.  Of course, your program's commands
662 | might be different; for a GUI interface, you would use an "about box".
663 | 
664 |   You should also get your employer (if you work as a programmer) or school,
665 | if any, to sign a "copyright disclaimer" for the program, if necessary.
666 | For more information on this, and how to apply and follow the GNU GPL, see
667 | <https://www.gnu.org/licenses/>.
668 | 
669 |   The GNU General Public License does not permit incorporating your program
670 | into proprietary programs.  If your program is a subroutine library, you
671 | may consider it more useful to permit linking proprietary applications with
672 | the library.  If this is what you want to do, use the GNU Lesser General
673 | Public License instead of this License.  But first, please read
674 | <https://www.gnu.org/licenses/why-not-lgpl.html>.
675 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # BugHunter
 2 | World best hackers tool for bughunters and blackhat hackers. A tool more powerful than Tool-X.
 3 | 
 4 | # Author:
 5 | **AnonyminHack5**
 6 | 
 7 | # Contents of this tool
 8 | 1) Information Gathering Tools
 9 | 
10 | 2) Mapping Tools
11 | 
12 | 3) Discovery Tools
13 | 
14 | 4) Exploitation Tools
15 | 
16 | 5) Pocs and Reporting Tools
17 | 
18 | - sage (Tools by AnonyminHack5)
19 | - whoami (Your ip and Location)
20 | 
21 | # Installation in Termux
22 | 
23 | > pkg install lolcat
24 | 
25 | > pkg install clang
26 | 
27 | > git clone https://github.com/TermuxHackz/BugHunter.git
28 | 
29 | > cd BugHunter
30 | 
31 | > bash install.sh
32 | 
33 | [*]Star this repo and follow me for more tools[*]
34 | 


--------------------------------------------------------------------------------
/_config.yml:
--------------------------------------------------------------------------------
1 | background: light-blue


--------------------------------------------------------------------------------
/bughunter.php:
--------------------------------------------------------------------------------
 1 | <html>
 2 | 	<body style="background: grey">
 3 | 		<?php
 4 | 		$msg = "Tool:<br>";
 5 | 		$txt = "Bug hunter: All in one tool for hackers, web pentesters, etc";
 6 | 		$block = "<br>";
 7 | 		$block1 = "<br>";
 8 | 		   echo "$msg";
 9 | 		   echo " $txt";
10 | 		   ?>
11 | 		   	</html>
12 | 		


--------------------------------------------------------------------------------
/bughunter.py:
--------------------------------------------------------------------------------
   1 | #!/usr/bin/env python2.7 
   2 | # __________                 ___ ___               __
   3 | # \______   \__ __  ____    /   |   \ __ __  _____/  |_  by AnonyminHack5
   4 | #  |    |  _/  |  \/ ___\  /    ~    \  |  \/    \   __\/ __ \_  __ \
   5 | #  |    |   \  |  / /_/  > \    Y    /  |  /   |  \  | \  ___/|  | \/
   6 | #  |______  /____/\___  /   \___|_  /|____/|___|  /__|  \___  >__|
   7 | #         \/     /_____/          \/            \/          \/
   8 | #
   9 | 
  10 | import os
  11 | import time
  12 | import httplib
  13 | import subprocess
  14 | import re
  15 | import urllib2
  16 | import socket
  17 | import urllib
  18 | import sys
  19 | import json
  20 | import telnetlib
  21 | import glob
  22 | import random
  23 | import Queue
  24 | import threading
  25 | #import requests
  26 | import base64
  27 | from getpass import getpass
  28 | from commands import *
  29 | from sys import argv
  30 | from platform import system
  31 | from urlparse import urlparse
  32 | from xml.dom import minidom
  33 | from optparse import OptionParser
  34 | from time import sleep
  35 | 
  36 | os.system('clear')
  37 | os.system('clear')
  38 | os.system('mkdir ~/bughunter')
  39 | os.system('mkdir ~/bughunter/info')
  40 | os.system('mkdir ~/bughunter/mapp')
  41 | os.system('mkdir ~/bughunter/disc')
  42 | os.system('mkdir ~/bughunter/expt')
  43 | os.system('mkdir ~/bughunter/repo')
  44 | os.system('mkdir ~/bughunter/sage')
  45 | os.system("rm ~/bughunter/update.sh")
  46 | os.system('clear')
  47 | os.system('clear')
  48 | 
  49 | yes = set(['yes', 'y', 'Yes', 'Y'])
  50 | no = set(['no', 'n', 'No', 'N'])
  51 | 
  52 | ###############################################################################
  53 | 
  54 | def logo():
  55 |     print """
  56 | - Powered by AnonyminHack5  
  57 | """
  58 | bughunterlogo = """\033[0m
  59 |   __________                 ___ ___               __                 
  60 |   \______   \__ __  ____    /   |   \ __ __  _____/  |_  by AnonyminHack5   
  61 |    |    |  _/  |  \/ ___\  /    ~    \  |  \/    \   __\/ __ \_  __ \ 
  62 |    |    |   \  |  / /_/  > \    Y    /  |  /   |  \  | \  ___/|  | \/ 
  63 |    |______  /____/\___  /   \___|_  /|____/|___|  /__|  \___  >__|    
  64 |           \/     /_____/          \/            \/          \/        
  65 | \033[91m"""
  66 | 
  67 | # MENU ########################################################################
  68 | 
  69 | def menu():
  70 |     clearScr()
  71 |     print (bughunterlogo + """\033[1m
  72 |   [!] Top Tools for Bug Hunting [!] | https://github.com/TermuxHackz
  73 |  -----------------------------------------------------------------------
  74 | \033[0m
  75 |    [1] - Information Gathering
  76 |    
  77 |    [update] - Update The BugHunter
  78 |    
  79 |    [2] - Mapping  
  80 |    
  81 |    [about] - About The BugHunter 
  82 |    
  83 |    [3] - Discovery   
  84 |    
  85 |    [whoami] - Your IP and Location 
  86 |    
  87 |    [4] - Exploitation   
  88 |    
  89 |    [sage] - Tools by AnonyminHack5 
  90 |    
  91 |    [5] - P0Cs & Reporting  
  92 |    
  93 |    [exit] - Exit The BugHunter   
  94 |  """)
  95 |     choice = raw_input("AnonyminHack5 bughunter~# ")
  96 |     os.system('clear')
  97 |     if choice == "update":
  98 |         updatebughunter()
  99 |     elif choice == "1":
 100 |         info()
 101 |     elif choice == "2":
 102 |         mapping()
 103 |     elif choice == "3":
 104 |         discovery()
 105 |     elif choice == "4":
 106 |         exploit()
 107 |     elif choice == "5":
 108 |         reporting()
 109 |     elif choice == "about":
 110 |         about()
 111 |     elif choice == "whoami":
 112 |         myinfo()
 113 |     elif choice == "sage":
 114 |         sage()
 115 |     elif choice == "exit":
 116 |         clearScr(), sys.exit()
 117 |     elif choice == "":
 118 |         clearScr(), menu()
 119 |     else:
 120 |         clearScr(), menu()
 121 | 
 122 | # Information Gathering #######################################################
 123 | 
 124 | def info():
 125 |     clearScr()
 126 |     print(bughunterlogo)
 127 |     print("""
 128 |     Information Gathering | https://github.com/TermuxHackz
 129 |     ----------------------------------------------------------------
 130 |     
 131 |      [1] - Basic Commands    [11] - InfoG
 132 |      [2] - Masscan           [12] - The Harvester
 133 |      [3] - DNS Recon         [13] - Recon-NG
 134 |      [4] - Sublist3r         [14] - SetoolKit
 135 |      [5] - Alt-DNS           [15] - WhatWeb
 136 |      [6] - Amass             [16] - Maltego
 137 |      [7] - Subfinder         [17] - Goohak
 138 |      [8] - Enumall           [18] - GoogD0rker
 139 |      [9] - Aquatone          
 140 |     [10] - Cloudflare_Enum    [0] - Useful Links   
 141 |     """)
 142 |     print("   [99] - Return to Main Menu \n")
 143 |     choice1 = raw_input("AnonyminHack5 bughunter~# ")
 144 |     if choice1 == "1":
 145 |         clearScr()
 146 |         basiccmd()
 147 |     if choice1 == "2":
 148 |         clearScr()
 149 |         masscan()
 150 |     if choice1 == "3":
 151 |         clearScr()        
 152 |         dnsrecon()
 153 |     if choice1 == "4":
 154 |         clearScr()
 155 |         sublister()
 156 |     if choice1 == "5":
 157 |         clearScr()
 158 |         altdns()
 159 |     if choice1 == "6":
 160 |         clearScr()
 161 |         amass()
 162 |     if choice1 == "7":
 163 |         clearScr()
 164 |         subfinder()
 165 |     if choice1 == "8":
 166 |         clearScr()
 167 |         enumall()
 168 |     if choice1 == "9":
 169 |         clearScr()
 170 |         aquatone()
 171 |     if choice1 == "10":
 172 |         clearScr()
 173 |         cloudenum()
 174 |     if choice1 == "11":
 175 |         clearScr()
 176 |         infog()
 177 |     if choice1 == "12":
 178 |         clearScr()
 179 |         harvester()
 180 |     if choice1 == "13":
 181 |         clearScr()
 182 |         reconng()
 183 |     if choice1 == "14":
 184 |         clearScr()
 185 |         setoolkit()
 186 |     if choice1 == "15":
 187 |         clearScr()
 188 |         whatweb()
 189 |     if choice1 == "16":
 190 |         clearScr()
 191 |         maltego()
 192 |     if choice1 == "17":
 193 |         clearScr()
 194 |         goohak()
 195 |     if choice1 == "18":
 196 |         clearScr()
 197 |         googdorker()
 198 |     if choice1 == "0":
 199 |         clearScr()
 200 |         usefullinks()                
 201 |     elif choice1 == "99":
 202 |         clearScr()
 203 |         menu()
 204 |     elif choice1 == "":
 205 |         clearScr()
 206 |         info()
 207 |     else:
 208 |         clearScr()
 209 |         info()
 210 | 
 211 | # Mapping #####################################################################
 212 | 
 213 | def mapping():
 214 |     clearScr()
 215 |     print(bughunterlogo)
 216 |     print("""
 217 |     Mapping | https://github.com/TermuxHackz/
 218 |     ----------------------------------------------------------------
 219 |     
 220 |     [1] - Nmap
 221 |     [2] - Firefox
 222 |     [3] - Firefox Extensions
 223 |     [4] - Burp Suite Pro
 224 |     [5] - Burp Suite Extensions
 225 |     [6] - Intruder Payloads
 226 |     [7] - Payloads All The Thing
 227 |     [8] - Git-all-Secrets
 228 |     """)
 229 |     print("   [99] - Return to Main Menu \n")
 230 |     choice2 = raw_input("AnonyminHack5 bughunter~# ")
 231 |     if choice2 == "1":
 232 |         clearScr()
 233 |         nmap()
 234 |     elif choice2 == "2":
 235 |         clearScr()
 236 |         firefox()
 237 |     elif choice2 == "3":
 238 |         clearScr()
 239 |         firefoxext()
 240 |     elif choice2 == "4":
 241 |         clearScr()
 242 |         burpsuitepro()        
 243 |     elif choice2 == "5":
 244 |         clearScr()
 245 |         burpext()
 246 |     elif choice2 == "6":
 247 |         clearScr()
 248 |         intruderpayload()
 249 |     elif choice2 == "7":
 250 |         clearScr()
 251 |         allpayload()
 252 |     elif choice2 == "8":
 253 |         clearScr()
 254 |         gitallsec()    
 255 |     elif choice2 == "99":
 256 |         clearScr()
 257 |         menu()    
 258 |     elif choice2 == "":
 259 |         clearScr()
 260 |         mapping()    
 261 |     else:
 262 |         clearScr()
 263 |         mapping()
 264 | 
 265 | # Discovery ###################################################################
 266 | 
 267 | def discovery():
 268 |     clearScr()
 269 |     print(bughunterlogo)
 270 |     print("""
 271 |     Discovery | https://github.com/TermuxHackz/ 
 272 |     ----------------------------------------------------------------
 273 |     
 274 |      [1] - Acunetix-WVS           [11] - W3af
 275 |      [2] - Arachni                [12] - Zed Attack Proxy
 276 |      [3] - Burp Suite             [13] - WP-Scan
 277 |      [4] - Nexpose                [14] - FuzzDB
 278 |      [5] - Nikto                  [15] - CeWL
 279 |      [6] - Vega                   [16] - DirBuster
 280 |      [7] - Wapiti                 [17] - Dirb
 281 |      [8] - Web Security Scanner   [18] - Filebuster
 282 |      [9] - Websecurify Suite      [19] - Gobuster
 283 |     [10] - Joomscan               [20] - DirSearch
 284 |     """)
 285 |     print("   [99] - Return to Main Menu \n")
 286 |     choice3 = raw_input("AnonyminHack5 bughunter~# ")
 287 |     os.system('clear')
 288 |     if choice3 == "1":
 289 |         acunetix()
 290 |     if choice3 == "2":
 291 |         arachni()
 292 |     if choice3 == "3":
 293 |         burpsuite()        
 294 |     if choice3 == "4":
 295 |         nexpose()
 296 |     if choice3 == "5":
 297 |         nikto()
 298 |     if choice3 == "6":
 299 |         vega()
 300 |     if choice3 == "7":
 301 |         wapiti()
 302 |     if choice3 == "8":
 303 |         websecscan()
 304 |     if choice3 == "9":
 305 |         websecsuite()
 306 |     if choice3 == "10":
 307 |         joomscan()
 308 |     if choice3 == "11":
 309 |         waaaf()
 310 |     if choice3 == "12":
 311 |         zed()
 312 |     if choice3 == "13":
 313 |         wpscan()        
 314 |     if choice3 == "14":
 315 |         fuzzdb()
 316 |     if choice3 == "15":
 317 |         cewl()
 318 |     if choice3 == "16":
 319 |         dirbuster()
 320 |     if choice3 == "17":
 321 |         dirb()
 322 |     if choice3 == "18":
 323 |         filebuster()
 324 |     if choice3 == "19":
 325 |         gobuster()
 326 |     if choice3 == "20":
 327 |         dirsearch()    
 328 |     elif choice3 == "99":
 329 |         menu()
 330 |     elif choice3 == "":
 331 |         clearScr()
 332 |         discovery()    
 333 |     else:
 334 |         clearScr()
 335 |         discovery()    
 336 | 
 337 | # Exploitation ###############################################################
 338 | 
 339 | def exploit():
 340 |     clearScr()
 341 |     print(bughunterlogo)
 342 |     print("""
 343 |     Exploitation | https://github.com/TermuxHackz
 344 |     -------------------------------------------------------------------------------------------
 345 |     
 346 |     XSS :                   SSTI :                  [22] - Race The Web     [38] - ChangeMe
 347 |     [1] - XSS Radar         [12] - Tplmap           [23] - CORStest         [39] - wappalyzer
 348 |     [2] - XSSHunter                                 [24] - RCE Struts-pwn   [40] - builtwith
 349 |     [3] - xssHunterClient   SSRF :                  [25] - ysoSerial        [41] - wafw00f
 350 |     [4] - DOMxssScanner     [13] - SSRF-Detector    [26] - PHPGGC           [42] - assetnote
 351 |     [5] - XSSer             [14] - Ground Control   [27] - Retire-js        [43] - jsbeautifier
 352 |     [6] - BruteXSS                                  [28] - Getsploit        [44] - LinkFinder
 353 |     [7] - XSStrike          LFI :                   [29] - Findsploit      
 354 |     [8] - XSS'OR            [15] - LFISuit          [30] - BFAC             Mobile : 
 355 |                                                     [31] - WP-Scan          [45] - MobSF
 356 |     SQLi :                  [16] - Gen-xbin-Avi     [32] - CMSmap           [46] - GenyMotion
 357 |     [9] - SQLmap            [17] - GitTools         [33] - Joomscan         [47] - Apktool
 358 |                             [18] - DVCS Ripper      [34] - JSON W T T       [48] - dex2jar
 359 |     XXE :                   [19] - TKO Subs         [35] - Wfuzz            [49] - jd-gui
 360 |     [10] - OXML-xxe         [20] - SubBruteforcer   [36] - Patator          [50] - idb
 361 |     [11] - XXEinjextor      [21] - Second-Order     [37] - Hydra          
 362 |     """)
 363 |     print("   [99] - Return to Main Menu \n")
 364 |     choice4 = raw_input("AnonyminHack5 bughunter~# ")
 365 |     if choice4 == "1":
 366 |         clearScr()
 367 |         xssradar()
 368 |     if choice4 == "2":
 369 |         clearScr()
 370 |         xsshunter()
 371 |     if choice4 == "3":
 372 |         clearScr()
 373 |         xsshunterclient()
 374 |     if choice4 == "4":
 375 |         clearScr()
 376 |         domxss()
 377 |     if choice4 == "5":
 378 |         clearScr()
 379 |         xsser()
 380 |     if choice4 == "6":
 381 |         clearScr()
 382 |         brutexss()
 383 |     if choice4 == "7":
 384 |         clearScr()
 385 |         xsstrike()
 386 |     if choice4 == "8":
 387 |         clearScr()
 388 |         xssor()
 389 |     if choice4 == "9":
 390 |         clearScr()
 391 |         sqlmap()
 392 |     if choice4 == "10":
 393 |         clearScr()
 394 |         oxmlxxe()
 395 |     if choice4 == "11":
 396 |         clearScr()
 397 |         xeeinj()
 398 |     if choice4 == "12":
 399 |         clearScr()
 400 |         tplmap()
 401 |     if choice4 == "13":
 402 |         clearScr()
 403 |         ssrfdetector()
 404 |     if choice4 == "14":
 405 |         clearScr()
 406 |         groundcontrol()
 407 |     if choice4 == "15":
 408 |         clearScr()
 409 |         lfisuit()
 410 |     if choice4 == "16":
 411 |         clearScr()
 412 |         genxbinavi()
 413 |     if choice4 == "17":
 414 |         clearScr()
 415 |         gittools()
 416 |     if choice4 == "18":
 417 |         clearScr()
 418 |         dvcsripper()
 419 |     if choice4 == "19":
 420 |         clearScr()
 421 |         tkosubs()
 422 |     if choice4 == "20":
 423 |         clearScr()
 424 |         subbruteforcer()
 425 |     if choice4 == "21":
 426 |         clearScr()
 427 |         secondorder()
 428 |     if choice4 == "22":
 429 |         clearScr()
 430 |         racetheweb()
 431 |     if choice4 == "23":
 432 |         clearScr()
 433 |         corstest()
 434 |     if choice4 == "24":
 435 |         clearScr()
 436 |         rcestrutspwn()
 437 |     if choice4 == "25":
 438 |         clearScr()
 439 |         ysoserial()
 440 |     if choice4 == "26":
 441 |         clearScr()
 442 |         phpggc()
 443 |     if choice4 == "27":
 444 |         clearScr()
 445 |         retirejs()
 446 |     if choice4 == "28":
 447 |         clearScr()
 448 |         getsploit()
 449 |     if choice4 == "29":
 450 |         clearScr()
 451 |         findsploit()
 452 |     if choice4 == "30":
 453 |         clearScr()
 454 |         bfac()
 455 |     if choice4 == "31":
 456 |         clearScr()
 457 |         wpscann()
 458 |     if choice4 == "32":
 459 |         clearScr()
 460 |         cmsmap()
 461 |     if choice4 == "33":
 462 |         clearScr()
 463 |         joomscan()
 464 |     if choice4 == "34":
 465 |         clearScr()
 466 |         jsonwtt()
 467 |     if choice4 == "35":
 468 |         clearScr()
 469 |         wfuzz()
 470 |     if choice4 == "36":
 471 |         clearScr()
 472 |         patator()
 473 |     if choice4 == "37":
 474 |         clearScr()
 475 |         hydra()
 476 |     if choice4 == "38":
 477 |         clearScr()
 478 |         changeme()
 479 |     if choice4 == "39":
 480 |         clearScr()
 481 |         wappalyzer()
 482 |     if choice4 == "40":
 483 |         clearScr()
 484 |         builtwith()
 485 |     if choice4 == "41":
 486 |         clearScr()
 487 |         wafwoof()
 488 |     if choice4 == "42":
 489 |         clearScr()
 490 |         assetnote()
 491 |     if choice4 == "43":
 492 |         clearScr()
 493 |         jsbeautifier()
 494 |     if choice4 == "44":
 495 |         clearScr()
 496 |         linkfinder()
 497 |     if choice4 == "45":
 498 |         clearScr()
 499 |         mobsf()
 500 |     if choice4 == "46":
 501 |         clearScr()
 502 |         genymotion()
 503 |     if choice4 == "47":
 504 |         clearScr()
 505 |         apktool()
 506 |     if choice4 == "48":
 507 |         clearScr()
 508 |         dex2jar()
 509 |     if choice4 == "49":
 510 |         clearScr()
 511 |         jdgui()
 512 |     if choice4 == "50":
 513 |         clearScr()
 514 |         idb()
 515 |     if choice4 == "99":
 516 |         clearScr()
 517 |         menu()
 518 |     elif choice4 == "":
 519 |         clearScr()
 520 |         exploit()
 521 |     else:
 522 |         clearScr()
 523 |         exploit()
 524 | 
 525 | # Reporting ###################################################################
 526 | 
 527 | def reporting():
 528 |     clearScr()
 529 |     print(bughunterlogo)
 530 |     print("""
 531 |     PoCs & Reporting | https://github.com/TermuxHackz
 532 |     ----------------------------------------------------------------
 533 |         
 534 |     [1] - Bug Bounty Platforms
 535 |     [2] - POCs (Proof of Concepts)
 536 |     [3] - CheatSheet
 537 |     [4] - EyeWitness
 538 |     [5] - HttpScreenshot
 539 |     [6] - BugBountyTemplates
 540 |     [7] - Template Generator
 541 |     """)    
 542 |     print("   [99] - Return to Main Menu \n")
 543 |     choice5 = raw_input("AnonyminHack5 bughunter~# ")
 544 |     if choice5 == "tips":
 545 |      clearScr()
 546 |      bugtips()
 547 |     if choice5 == "1":
 548 |         clearScr()
 549 |         platforms()
 550 |     if choice5 == "2":
 551 |         clearScr()
 552 |         pocs()
 553 |     if choice5 == "3":
 554 |         clearScr()
 555 |         cheatsheet()
 556 |     if choice5 == "4":
 557 |      clearScr()
 558 |      eyewitness()
 559 |     if choice5 == "5":
 560 |      clearScr()
 561 |      httpscreenshot()
 562 |     if choice5 == "6":
 563 |      clearScr()
 564 |      bbtemplates()
 565 |     if choice5 == "7":
 566 |      clearScr()
 567 |      gentemplates()
 568 |     elif choice5 == "99":
 569 |         menu()
 570 |     elif choice5 == "":
 571 |         reporting()
 572 |     else:
 573 |         reporting()
 574 | 
 575 | # SAGE ########################################################################
 576 | 
 577 | def sage():
 578 |     clearScr()
 579 |     print(bughunterlogo)
 580 |     print("""
 581 |     Tools by AnonyminHack5  | https://github.com/TermuxHackz
 582 |     ----------------------------------------------------------------
 583 |     
 584 |     [1] - Hacktronian - A Collection of Hacking Tools for Unix
 585 |     [2] - Hackdroid - 250+ Penetration Testing Apps for Android
 586 |     [3] - Hacknix - Hacking Tools For All Debian-based OS
 587 |     [4] - Fluxion - WPA/WPA2 Cracker Using Evil Twin Attack
 588 |     [5] - Ducky 4 Arduino - Ducky Script for Arduino Leonardo Mini
 589 |     [6] - DoS and DDoS - Attack & Protection Tools
 590 |     [7] - Kali-WSL - GUI Mode in Kali Linux Windows
 591 |     [8] - HackPi - Portable Hacking Machine with RPi3
 592 |     [9] - TorFi - Anonymous WiFi Hotspot
 593 |     """)
 594 |     print("   [99] - Return to Main Menu \n")
 595 |     choicesage = raw_input("AnonyminHack5 bughunter~# ")
 596 |     if choicesage == "1":
 597 |         clearScr()
 598 |         hacktronian()
 599 |     if choicesage == "2":
 600 |         clearScr()
 601 |         hackdroid()
 602 |     if choicesage == "3":
 603 |         clearScr()
 604 |         hacknix()
 605 |     if choicesage == "4":
 606 |      clearScr()
 607 |      fluxion()
 608 |     if choicesage == "5":
 609 |      clearScr()
 610 |      duckydino()
 611 |     if choicesage == "6":
 612 |      clearScr()
 613 |      ddos()
 614 |     if choicesage == "7":
 615 |      clearScr()
 616 |      kaliwsl()
 617 |     if choicesage == "8":
 618 |      clearScr()
 619 |      hackpi()     
 620 |     if choicesage == "9":
 621 |      clearScr()
 622 |      torfi()
 623 |     elif choicesage == "99":
 624 |         clearScr()
 625 |         menu()
 626 |     elif choicesage == "":
 627 |         clearScr()
 628 |         sage()
 629 |     else:
 630 |         clearScr()
 631 |         sage()
 632 | 
 633 | # Update ######################################################################
 634 | 
 635 | def updatebughunter():
 636 |     os.system('clear')
 637 |     print(bughunterlogo)
 638 |     print ("""
 639 |     Update Bughunter To Latest Version.. Current Version : 1.0
 640 |     
 641 |     Check Latest Version Here : https://github.com/TermuxHackz/bughunter
 642 |     """)
 643 |     choiceupdate = raw_input(" Press Enter and Go Back To Main Menu : ")
 644 |     if choiceupdate == "":
 645 |         clearScr()
 646 |         menu()
 647 |     else:
 648 |         clearScr()
 649 |         menu()
 650 | 
 651 | # About #######################################################################
 652 | 
 653 | def about():
 654 |     os.system('clear')
 655 |     print(bughunterlogo)
 656 |     print ("""
 657 | ---------------------------------------------------------------------
 658 |     BugHunter v1.0 by AnonyminHack5 . | https://github.com/TermuxHackz   
 659 | ---------------------------------------------------------------------
 660 |     Download Directory : 
 661 |     
 662 |     Normal User : /home/$USER/bughunter/
 663 |     
 664 |     Root User : /root/bughunter/
 665 |    
 666 |     ~/bughunter/info/ : Tools for Information Gathering
 667 |     ~/bughunter/mapp/ : Tools for Mapping    
 668 |     ~/bughunter/disc/ : Tools for Discovery
 669 |     ~/bughunter/expt/ : Tools for Exploitation
 670 |     ~/bughunter/rept/ : Tools for Reporting
 671 |     ~/bughunter/sage/ : Tools by AnonyminHack5
 672 | 
 673 |     Attention : View README.md File for Installation Instruction and How To Use Guide.
 674 | ---------------------------------------------------------------------
 675 |     Follow Me :  https://github.com/TermuxHackz
 676 |     Github    :  https://github.com/TermuxHackz
 677 |     YouTube   :  https://youtube.com/Gamerlinks
 678 |     Twitter   :  https://twitter.com/AnonyminHack5 
 679 |     Instagram :  https://instagram.com/AnonyminHack5
 680 |     Whatsapp group: Termux Android Hackers
 681 | ---------------------------------------------------------------------
 682 |     [!] Thanks for Using This Tool :) 
 683 | ---------------------------------------------------------------------
 684 |     """)
 685 |     choiceabout = raw_input(" Press Enter and Go Back To Main Menu : ")
 686 |     if choiceabout == "":
 687 |         clearScr()
 688 |         menu()
 689 |     else:
 690 |         clearScr()
 691 |         menu()
 692 | 
 693 | # My Info #####################################################################
 694 | 
 695 | def myinfo():
 696 |     os.system('clear')
 697 |     print(bughunterlogo)
 698 |     os.system("curl ipinfo.io")
 699 |     choicemyinfo = raw_input("\n Press Enter and Go Back To Main Menu : ")
 700 |     if choicemyinfo == "":
 701 |         clearScr()
 702 |         menu()
 703 |     else:
 704 |         clearScr()
 705 |         menu()
 706 | 
 707 | # SAGE ########################################################################
 708 | 
 709 | def hacktronian():
 710 |     os.system('clear')
 711 |     print ("""
 712 |     A Collection of Hacking Tools for Unix.
 713 |     
 714 |     Read More : https://github.com/TermuxHackz/hacktronian
 715 |     """)
 716 |     choicehacktronian = raw_input(" Do You Want To Download Hacktronian? (Y/N) : ")
 717 |     if choicehacktronian in yes:
 718 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/TermuxHackz/hacktronian.git")
 719 |     elif choicehacktronian in no:
 720 |       clearScr()
 721 |       sage()
 722 |     elif choicehacktronian == "":
 723 |          clearScr()
 724 |          sage()
 725 |     else:
 726 |          clearScr()
 727 |          sage()
 728 | 
 729 | def hackdroid():
 730 |     os.system('clear')
 731 |     print ("""
 732 |     HackDroid is a collection of 250+ Penetration Testing and Ethical Hacking 
 733 |     Apps for Android... in this, The Applications is divided into different 
 734 |     categories so You can Download any App from any Category and Use it..
 735 |     
 736 |     Read More : https://github.com/thehackingsage/HackDroid
 737 |     """)
 738 |     choicehackdroid = raw_input(" Do You Want To Download Hackdroid? (Y/N) : ")
 739 |     if choicehackdroid in yes:
 740 |         os.system("git clone https://github.com/thehackingsage/HackDroid")
 741 |     elif choicehackdroid in no:
 742 |       clearScr()
 743 |       sage()
 744 |     elif choicehackdroid == "":
 745 |          clearScr()
 746 |          sage()
 747 |     else:
 748 |          clearScr()
 749 |          sage()
 750 | 
 751 | def hacknix():
 752 |     os.system('clear')
 753 |     print ("""
 754 |     Hacknix is a script that installs all Kali Linux tools in your Debian-based 
 755 |     operating system. All you need is Python 2.7 and the Git package installed 
 756 |     in your system. Using this script, you can add and remove Kali Linux repositories..
 757 |     
 758 |     Read More : https://github.com/thehackingsage/hacknix
 759 |     """)
 760 |     choicehacknix = raw_input(" Do You Want To Download Hacknix? (Y/N) : ")
 761 |     if choicehacknix in yes:
 762 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/hacknix.git")
 763 |     elif choicehacknix in no:
 764 |       clearScr()
 765 |       sage()
 766 |     elif choicehacknix == "":
 767 |          clearScr()
 768 |          sage()
 769 |     else:
 770 |          clearScr()
 771 |          sage()    
 772 | 
 773 | def fluxion():
 774 |     os.system('clear')
 775 |     print(""" 
 776 |     Fluxion is a wifi key cracker using evil twin attack..
 777 |     you need a wireless adoptor for this tool.
 778 |     
 779 |     Read More : https://github.com/thehackingsage/Fluxion
 780 |     """)
 781 |     choicefluxion = raw_input(" Do You Want To Download Fluxion? (Y/N) : ")
 782 |     if choicefluxion in yes:
 783 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/Fluxion.git")
 784 |     elif choicefluxion in no:
 785 |          clearScr()
 786 |          sage()
 787 |     elif choicefluxion == "":
 788 |          clearScr()
 789 |          sage()
 790 |     else:
 791 |          clearScr()
 792 |          sage()
 793 | 
 794 | def duckydino():
 795 |     os.system('clear')
 796 |     print ("""
 797 |     Ducky Script for Arduino Leonardo Mini & Arduino Uno + Payload to Arduino Converter
 798 |     
 799 |     Read More : https://github.com/thehackingsage/ducky4arduino
 800 |     """)
 801 |     choiceduckydino = raw_input(" Do You Want To Use DuckyDino? (Y/N) : ")
 802 |     if choiceduckydino in yes:
 803 |         os.system("git clone https://github.com/thehackingsage/ducky4arduino")
 804 |     elif choiceduckydino in no:
 805 |       clearScr()
 806 |       sage()
 807 |     elif choiceduckydino == "":
 808 |          clearScr()
 809 |          sage()
 810 |     else:
 811 |          clearScr()
 812 |          sage()
 813 | 
 814 | def ddos():
 815 |     os.system('clear')
 816 |     print ("""
 817 |     DoS and DDoS Attack & Protection Tools for Windows, Linux & Android 
 818 |     
 819 |     !!! For Educational Purposes Only !!!
 820 |     
 821 |     Read More : https://github.com/thehackingsage/DDoS
 822 |     """)
 823 |     choiceddos = raw_input(" Do You Want To Download DoS & DDoS Tools? (Y/N) : ")
 824 |     if choiceddos in yes:
 825 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/DDoS.git")
 826 |     elif choiceddos in no:
 827 |       clearScr()
 828 |       sage()
 829 |     elif choiceddos == "":
 830 |          clearScr()
 831 |          sage()
 832 |     else:
 833 |          clearScr()
 834 |          sage()
 835 | 
 836 | def kaliwsl():
 837 |     os.system('clear')
 838 |     print ("""
 839 |     Tool for Kali Linux Windows App :    
 840 |     Update, Upgrade, XFCE4 - GUI Mode & Hacking Tools..
 841 |     
 842 |     After Enabling WSL and Installing Kali Linux App 
 843 |     from the Microsoft Store in Windows 10, Run This Script. 
 844 |     
 845 |     Read More : https://github.com/thehackingsage/Kali-WSL.git
 846 |     """)
 847 |     choicekaliwsl = raw_input(" Do You Want To Download Kali-WSL? (Y/N) : ")
 848 |     if choicekaliwsl in yes:
 849 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/Kali-WSL.git")
 850 |     elif choicekaliwsl in no:
 851 |       clearScr()
 852 |       sage()
 853 |     elif choicekaliwsl == "":
 854 |          clearScr()
 855 |          sage()
 856 |     else:
 857 |          clearScr()
 858 |          sage()
 859 | 
 860 | def hackpi():
 861 |     os.system('clear')
 862 |     print ("""
 863 |     Plug and Play Portable Hacking Machine with RPi3
 864 |     
 865 |     Update, Upgrade, AutoLogin, AutoVNC & Hacking Tools
 866 |     
 867 |     Read More : https://github.com/thehackingsage/HackPi
 868 |     """)
 869 |     choicehackpi = raw_input(" Do You Want To Download HackPi? (Y/N) : ")
 870 |     if choicehackpi in yes:
 871 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/HackPi.git")
 872 |     elif choicehackpi in no:
 873 |       clearScr()
 874 |       sage()
 875 |     elif choicehackpi == "":
 876 |          clearScr()
 877 |          sage()
 878 |     else:
 879 |          clearScr()
 880 |          sage()
 881 | 
 882 | def torfi():
 883 |     os.system('clear')
 884 |     print ("""
 885 |     Anonymous WiFi Hotspot Using Raspberry Pi 3
 886 |     
 887 |     Read More : https://github.com/thehackingsage/TorFi
 888 |     """)
 889 |     choicehackpi = raw_input(" Do You Want To Download TorFi? (Y/N) : ")
 890 |     if choicehackpi in yes:
 891 |         os.system("cd ~/bughunter/sage/ && git clone https://github.com/thehackingsage/torFi.git")
 892 |     elif choicehackpi in no:
 893 |       clearScr()
 894 |       sage()
 895 |     elif choicehackpi == "":
 896 |          clearScr()
 897 |          sage()
 898 |     else:
 899 |          clearScr()
 900 |          sage()
 901 | 
 902 | # Information Gathering #######################################################
 903 | 
 904 | def basiccmd():
 905 |     os.system('clear')
 906 |     print ("""
 907 |     use the following steps to validate ownership of a target :
 908 | 
 909 |     Ping the target domains/hosts :
 910 |     ping google.com 
 911 |     ping 8.8.8.8
 912 |     
 913 |     Whois the target domains/hosts/ip :
 914 |     whois example.com
 915 |     whois 104.27.178.12
 916 |     
 917 |     Resolve the IP addresses for the target domains/hosts :
 918 |     dig +short example.com
 919 |     
 920 |     Results could be mixed depending on whether or not the target 
 921 |     is using whois privacy protection.
 922 |     """)
 923 |     choicebasiccmd = raw_input(" Press Enter and Go Back To Information Gathering Menu : ")
 924 |     if choicebasiccmd == "":
 925 |          clearScr()
 926 |          info()
 927 |     else:
 928 |         clearScr()
 929 |         info()
 930 |     
 931 | def masscan():
 932 |     os.system('clear')
 933 |     print ("""
 934 |     Mass IP port scanner. ... It can scan the entire Internet in under 6 minutes, 
 935 |     transmitting 10 million packets per second.
 936 |     """)
 937 |     choicemasscan = raw_input(" Do You Want To Download MASSCAN? (Y/N) : ")
 938 |     if choicemasscan in yes:
 939 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/robertdavidgraham/masscan.git")
 940 |     elif choicemasscan in no:
 941 |       clearScr()
 942 |       info()
 943 |     elif choicemasscan == "":
 944 |          clearScr()
 945 |          info()
 946 |     else:
 947 |          clearScr()
 948 |          info()
 949 |          
 950 | def dnsrecon():
 951 |     os.system('clear')
 952 |     print ("""
 953 |     DNSRecon is a Python port of a Ruby script that I wrote to learn the language 
 954 |     and about DNS in early 2007. This time I wanted to learn about Python and extend 
 955 |     the functionality of the original tool and in the process re-learn how DNS works 
 956 |     and how could it be used in the process of a security assessment and network troubleshooting.
 957 |     """)
 958 |     choicednsrecon = raw_input(" Do You Want To Download DNS-Recon? (Y/N) : ")
 959 |     if choicednsrecon in yes:
 960 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/darkoperator/dnsrecon.git")
 961 |     elif choicednsrecon in no:
 962 |       clearScr()
 963 |       info()
 964 |     elif choicednsrecon == "":
 965 |          clearScr()
 966 |          info()
 967 |     else:
 968 |          clearScr()           
 969 |          info()
 970 |             
 971 | def sublister():
 972 |     os.system('clear')
 973 |     print ("""
 974 |     Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT.
 975 |     It helps penetration testers and bug hunters collect and gather subdomains for the 
 976 |     domain they are targeting. Sublist3r enumerates subdomains using many search engines 
 977 |     such as Google, Yahoo, Bing, Baidu, and Ask. Sublist3r also enumerates subdomains 
 978 |     using Netcraft, Virustotal, ThreatCrowd, DNSdumpster, and ReverseDNS.
 979 |     """)
 980 |     choicesublister = raw_input(" Do You Want To Download SubList3r? (Y/N) : ")
 981 |     if choicesublister in yes:
 982 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/aboul3la/Sublist3r.git")
 983 |     elif choicesublister in no:
 984 |       clearScr()
 985 |       info()
 986 |     elif choicesublister == "":
 987 |          clearScr()
 988 |          info()
 989 |     else:
 990 |          clearScr()
 991 |          info()
 992 | 
 993 | def altdns():
 994 |     os.system('clear')
 995 |     print ("""
 996 |     Altdns is a DNS recon tool that allows for the discovery of subdomains that conform to patterns.
 997 |     Altdns takes in words that could be present in subdomains under a domain (such as test, dev, 
 998 |     staging) as well as takes in a list of subdomains that you know of..
 999 | 
1000 |     From these two lists that are provided as input to altdns, the tool then generates a massive 
1001 |     output of "altered" or "mutated" potential subdomains that could be present. It saves this output 
1002 |     so that it can then be used by your favourite DNS bruteforcing tool.
1003 | 
1004 |     Alternatively, the -r flag can be passed to altdns so that once this output is generated, 
1005 |     the tool can then resolve these subdomains (multi-threaded) and save the results to a file.
1006 | 
1007 |     Altdns works best with large datasets. Having an initial dataset of 200 or more subdomains should 
1008 |     churn out some valid subdomains via the alterations generated.
1009 |     """)
1010 |     choicealtdns = raw_input(" Do You Want To Download Altdns? (Y/N) : ")
1011 |     if choicealtdns in yes:
1012 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/infosec-au/altdns.git")
1013 |     elif choicealtdns in no:
1014 |       clearScr()
1015 |       info()
1016 |     elif choicealtdns == "":
1017 |          clearScr()
1018 |          info()
1019 |     else:
1020 |          clearScr()
1021 |          info()
1022 | 
1023 | def amass():
1024 |     os.system('clear')
1025 |     print ("""
1026 |     Amass is a tool for In-Depth DNS Enumeration and Network Mapping..
1027 |     """)
1028 |     choiceamass = raw_input(" Do You Want To Download Amass? (Y/N) : ")
1029 |     if choiceamass in yes:
1030 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/caffix/amass.git")
1031 |     elif choiceamass in no:
1032 |       clearScr()
1033 |       info()
1034 |     elif choiceamass == "":
1035 |          clearScr()
1036 |          info()
1037 |     else:
1038 |          clearScr()
1039 |          info()
1040 | 
1041 | def subfinder():
1042 |     os.system('clear')
1043 |     print ("""
1044 |     SubFinder is a subdomain discovery tool that discovers valid subdomains for websites. 
1045 |     Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
1046 |     """)
1047 |     choicesubfinder = raw_input(" Do You Want To Download Subfinder? (Y/N) : ")
1048 |     if choicesubfinder in yes:
1049 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/subfinder/subfinder.git")
1050 |     elif choicesubfinder in no:
1051 |       clearScr()
1052 |       info()
1053 |     elif choicesubfinder == "":
1054 |          clearScr()
1055 |          info()
1056 |     else:
1057 |          clearScr()
1058 |          info()
1059 | 
1060 | def enumall():
1061 |     os.system('clear')
1062 |     print ("""
1063 |     Recon-ng and Alt-DNS are awesome. This script combines the power of these 
1064 |     tools with the ability to run multiple domains within the same session.
1065 |     """)
1066 |     choiceenumall = raw_input(" Do You Want To Download Enumall? (Y/N) : ")
1067 |     if choiceenumall in yes:
1068 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/jhaddix/domain.git && mv domain enumall")
1069 |     elif choiceenumall in no:
1070 |       clearScr()
1071 |       info()
1072 |     elif choiceenumall == "":
1073 |          clearScr()
1074 |          info()
1075 |     else:
1076 |          clearScr()
1077 |          info()
1078 | 
1079 | def aquatone():
1080 |     os.system('clear')
1081 |     print ("""
1082 |     Aquatone is a tool for visual inspection of websites across a large amount of hosts 
1083 |     and is convenient for quickly gaining an overview of HTTP-based attack surface.
1084 |     """)
1085 |     choiceaquatone = raw_input(" Do You Want To Download Aquatone? (Y/N) : ")
1086 |     if choiceaquatone in yes:
1087 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/michenriksen/aquatone.git")
1088 |     elif choiceaquatone in no:
1089 |       clearScr()
1090 |       info()
1091 |     elif choiceaquatone == "":
1092 |          clearScr()
1093 |          info()
1094 |     else:
1095 |          clearScr()
1096 |          info()
1097 | 
1098 | def cloudenum():
1099 |     os.system('clear')
1100 |     print ("""
1101 |     A simple tool to allow easy querying of Cloudflare's DNS data written in Python.
1102 |     """)
1103 |     choicecloudenum = raw_input(" Do You Want To Download Cloudflare Enumeration Tool? (Y/N) : ")
1104 |     if choicecloudenum in yes:
1105 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/mandatoryprogrammer/cloudflare_enum.git")
1106 |     elif choicecloudenum in no:
1107 |       clearScr()
1108 |       info()
1109 |     elif choicecloudenum == "":
1110 |          clearScr()
1111 |          info()
1112 |     else:
1113 |          clearScr()
1114 |          info()
1115 | 
1116 | def infog():
1117 |     os.system('clear')
1118 |     print ("""
1119 |     A Information Gathering Tool by LinuxChoice.
1120 |     """)
1121 |     choiceinfog = raw_input(" Do You Want To Download InfoG? (Y/N) : ")
1122 |     if choiceinfog in yes:
1123 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/thelinuxchoice/infog.git")
1124 |     elif choiceinfog in no:
1125 |       clearScr()
1126 |       info()
1127 |     elif choiceinfog == "":
1128 |          clearScr()
1129 |          info()
1130 |     else:
1131 |          clearScr()
1132 |          info()
1133 | 
1134 | def harvester():
1135 |     os.system('clear')
1136 |     print ("""
1137 |     theHarvester is a tool for gathering subdomain names, e-mail addresses, 
1138 |     virtual hosts, open ports/ banners, and employee names from different 
1139 |     public sources (search engines, pgp key servers).
1140 |     """)
1141 |     choiceharvester = raw_input(" Do You Want To Download The Harvester? (Y/N) : ")
1142 |     if choiceharvester in yes:
1143 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/laramies/theHarvester.git")
1144 |     elif choiceharvester in no:
1145 |       clearScr()
1146 |       info()
1147 |     elif choiceharvester == "":
1148 |          clearScr()
1149 |          info()
1150 |     else:
1151 |          clearScr()
1152 |          info()
1153 | 
1154 | def reconng():
1155 |     os.system('clear')
1156 |     print ("""
1157 |     One of The Best Reconnaissance Tool.. (and my personal favourite) 
1158 |     """)
1159 |     choicereconng = raw_input(" Do You Want To Download Recon-ng? (Y/N) : ")
1160 |     if choicereconng in yes:
1161 |         os.system("cd ~/bughunter/info/ && git clone https://LaNMaSteR53@bitbucket.org/LaNMaSteR53/recon-ng.git")
1162 |     elif choicereconng in no:
1163 |       clearScr()
1164 |       info()
1165 |     elif choicereconng == "":
1166 |          clearScr()
1167 |          info()
1168 |     else:
1169 |          clearScr()
1170 |          info()
1171 | 
1172 | def setoolkit():
1173 |     os.system('clear')
1174 |     print ("""
1175 |     The Social-Engineer Toolkit is an open-source penetration testing framework
1176 |     designed for social engineering. SET has a number of custom attack vectors that
1177 |     allow you to make a believable attack quickly.
1178 |     """)
1179 |     choicesetoolkit = raw_input(" Do You Want To Download Setoolkit (Y/N) : ")
1180 |     if choicesetoolkit in yes:
1181 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/trustedsec/social-engineer-toolkit.git")
1182 |     elif choicesetoolkit in no:
1183 |         clearScr()
1184 |         info()
1185 |     elif choicesetoolkit == "":
1186 |         clearScr()
1187 |         info()
1188 |     else:
1189 |         clearScr()
1190 |         info()
1191 | 
1192 | def whatweb():
1193 |     os.system('clear')
1194 |     print ("""
1195 |     WhatWeb identifies websites. Its goal is to answer the question, "What is that Website?". 
1196 |     WhatWeb recognises web technologies including content management systems (CMS), blogging 
1197 |     platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded 
1198 |     devices. WhatWeb has over 1700 plugins, each to recognise something different. WhatWeb 
1199 |     also identifies version numbers, email addresses, account IDs, web framework modules, 
1200 |     SQL errors, and more.
1201 |     """)
1202 |     choicewhatweb = raw_input(" Do You Want To Download WhatWeb? (Y/N) : ")
1203 |     if choicewhatweb in yes:
1204 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/urbanadventurer/WhatWeb.git")
1205 |     elif choicewhatweb in no:
1206 |       clearScr()
1207 |       info()
1208 |     elif choicewhatweb == "":
1209 |          clearScr()
1210 |          info()
1211 |     else:
1212 |          clearScr()
1213 |          info()
1214 | 
1215 | def maltego():
1216 |     os.system('clear')
1217 |     print ("""
1218 |     Maltego is proprietary software used for open-source intelligence and forensics, 
1219 |     developed by Paterva. Maltego focuses on providing a library of transforms for 
1220 |     discovery of data from open sources, and visualizing that information in a graph 
1221 |     format, suitable for link analysis and data mining. 
1222 |     """)
1223 |     choicemaltego = raw_input(" Do You Want To Download Maltego? (Y/N) : ")
1224 |     if choicemaltego in yes:
1225 |         os.system("firefox https://www.paterva.com/web7/downloads.php")
1226 |     elif choicemaltego in no:
1227 |       clearScr()
1228 |       info()
1229 |     elif choicemaltego == "":
1230 |          clearScr()
1231 |          info()
1232 |     else:
1233 |          clearScr()
1234 |          info()
1235 |          
1236 | def goohak():
1237 |     os.system("clear")
1238 |     print ("""
1239 |     Automatically launch google hacking queries against a target domain to find 
1240 |     vulnerabilities and enumerate a target.
1241 |     """)
1242 |     choicegoohak = raw_input (" Do You Want To Download Goohak? (Y/N) : ")
1243 |     if choicegoohak in yes:
1244 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/1N3/Goohak.git")
1245 |     elif choicegoohak in no:
1246 |       clearScr()
1247 |       info()
1248 |     elif choicegoohak == "":
1249 |          clearScr()
1250 |          info()
1251 |     else:
1252 |          clearScr()
1253 |          info()
1254 |          
1255 | def googdorker():
1256 |     os.system("clear")
1257 |     print ("""
1258 |     GoogD0rker is a tool for firing off google dorks against a target domain, 
1259 |     it is purely for OSINT against a specific target domain. It is split into 
1260 |     two versions, a bash script designed for OSX and a python script designed 
1261 |     to be cross platform.
1262 |     """)
1263 |     choicegoogdorker = raw_input (" Do You Want To Download Googdorker? (Y/N) : ")
1264 |     if choicegoogdorker in yes:
1265 |         os.system("cd ~/bughunter/info/ && git clone https://github.com/ZephrFish/GoogD0rker.git")
1266 |     elif choicegoogdorker in no:
1267 |       clearScr()
1268 |       info()
1269 |     elif choicegoogdorker == "":
1270 |          clearScr()
1271 |          info()
1272 |     else:
1273 |          clearScr()
1274 |          info()
1275 | 
1276 | def usefullinks():
1277 |     os.system("clear")
1278 |     print ("""
1279 |     Some Useful Links for Reconnaissance & Enumeration..
1280 |     
1281 |     Wayback Machine         : https://web.archive.org/
1282 |     Wayback Robots          : https://gist.github.com/mhmdiaa/2742c5e147d49a804b408bfed3d32d07
1283 |     Wayback URLs            : https://gist.github.com/mhmdiaa/adf6bff70142e5091792841d4b372050
1284 |     Shodan                  : https://shodan.io/
1285 |     Internet Wide Scan Data : http://Repositoryscans.io/
1286 |     Censys                  : https://censys.io/
1287 |     Hurricane Electric      : http://bgp.he.net/
1288 |     Netcraft                : https://www.netcraft.com/
1289 |     DomainCrawler           : http://www.domaincrawler.com/
1290 |     W3DT                    : https://w3dt.net/
1291 |     Netinfo                 : http://www.netinfo.org.ua
1292 |     DomainSearch            : http://domainsearch.com/
1293 |     DomainTools             : http://whois.domaintools.com/
1294 |     InterNIC                : http://www.internic.net/whois.html
1295 |     Who.IS                  : http://www.who.is/
1296 |     Whois.net               : http://www.whois.net/
1297 |     Visual Traceroute       : http://en.dnstools.ch/port-scan.html
1298 |     CentralOps.net          : http://centralops.net/co/
1299 |     DNS Stuff               : http://www.dnsstuff.com/
1300 |     IP-Address              : http://www.ip-adress.com/
1301 |     IPinfo Security Portal  : http://ipinfo.info/index.php
1302 |     Internet Domain Survey  : http://www.isc.org/index.pl?/ops/ds/
1303 |     NerdLabs                : http://www.nerdlabs.org/tools/
1304 |     NetQuery                : http://www.ipaddress123.com/nquser.php
1305 |     Network Tools           : http://home.planet.nl/~houwe135/wbnt1/
1306 |     Network Tools 2         : http://www.network-tools.com/
1307 |     RobTex SwissArmyKnife   : https://www.robtex.com/
1308 |     WebTic DNS scan         : http://tools.webtic.nl/dnsscan
1309 |     Geo IP Tool             : http://geoiptool.com/
1310 |     Geographic Location     : http://tejji.com/ip/
1311 |     Reverse IP domain check : http://www.yougetsignal.com/tools/web-s ... eb-server/
1312 |     Internet Traffic Report : http://www.internettrafficreport.com/europe.htm
1313 |     """)
1314 |     choiceusefullinks = raw_input (" Press Enter and Go Back To Information Gathering Menu : ")
1315 |     if choiceusefullinks == "":
1316 |          clearScr()
1317 |          info()
1318 |     else:
1319 |          clearScr()
1320 |          info()
1321 |          
1322 | # Mapping #####################################################################
1323 | 
1324 | def nmap():
1325 |     os.system('clear')
1326 |     print ("""
1327 |     Nmap is a free and open-source security scanner, originally written by Gordon Lyon, 
1328 |     used to discover hosts and services on a computer network, thus building a "map" of 
1329 |     the network. To accomplish its goal, Nmap sends specially crafted packets to the 
1330 |     target host and then analyzes the responses. It's a TCP/IP host and port scanning 
1331 |     tool with fantastic service and OS fingerprinting capabilities.
1332 |     """)
1333 |     choicenmap = raw_input(" Do You Want To Download Nmap? (Y/N) : ")
1334 |     if choicenmap in yes:
1335 |         os.system("cd ~/bughunter/mapp/ && git clone https://github.com/nmap/nmap.git")
1336 |     elif choicenmap in no:
1337 |         clearScr()
1338 |         mapping()
1339 |     elif choicenmap == "":
1340 |         clearScr()
1341 |         mapping()
1342 |     else:
1343 |         clearScr()
1344 |         mapping()
1345 | 
1346 | def firefox():
1347 |     clearScr()
1348 |     print ("""
1349 |     Mozilla Firefox is a free and open-source web browser. 
1350 |     
1351 |     https://www.mozilla.org/en-US/firefox/new/
1352 |     
1353 |     """)
1354 |     choicefirefox = raw_input(" Do You Want To Download Firefox? (Y/N) : ")
1355 |     if choicefirefox in yes:
1356 |         os.system("apt-get install firefox")
1357 |     elif choicefirefox in no:
1358 |         clearScr()
1359 |         mapping()
1360 |     elif choicefirefox == "":
1361 |         clearScr()
1362 |         mapping()
1363 |     else:
1364 |         clearScr()
1365 |         mapping()
1366 | 
1367 | def firefoxext():
1368 |     clearScr()
1369 |     print ("""
1370 |     A tool that transforms Firefox browsers into a penetration testing suite.
1371 |     
1372 |     """)
1373 |     choicefirefoxext = raw_input(" Do You Want To Download Firefox Pentesting Extensions? (Y/N) : ")
1374 |     if choicefirefoxext in yes:
1375 |         os.system("cd ~/bughunter/mapp && git clone https://github.com/mazen160/Firefox-Security-Toolkit.git")
1376 |     elif choicefirefoxext in no:
1377 |         clearScr()
1378 |         mapping()
1379 |     elif choicefirefoxext == "":
1380 |         clearScr()
1381 |         mapping()
1382 |     else:
1383 |         clearScr()
1384 |         mapping()
1385 | 
1386 | def burpsuitepro():
1387 |     os.system('clear')
1388 |     print (""" 
1389 |     Burp Suite is a Java based Web Penetration Testing framework.
1390 |     It has become an industry standard suite of tools used by information security
1391 |     professionals. Burp Suite helps you identify vulnerabilities and verify attack
1392 |     vectors that are affecting web applications.
1393 |     
1394 |     BurpSuite Pro v1.6.67 : https://github.com/thehackingsage/burpsuite.git\n
1395 |     """)
1396 |     choiceburp = raw_input(" Do You Want To Download BurpSuite Pro v1.6.67 (Y/N) : ")
1397 |     if choiceburp in yes:
1398 |         os.system("firefox https://github.com/thehackingsage/burpsuite.git")
1399 |     elif choiceburp in no:
1400 |       clearScr()
1401 |       mapping()
1402 |     elif choiceburp == "":
1403 |          clearScr()
1404 |          mapping()
1405 |     else:
1406 |         clearScr()
1407 |         mapping()
1408 | 
1409 | def burpext():
1410 |     os.system('clear')
1411 |     print ("""
1412 |     You Can Use All Extensions From BApp Store in Burp Suite Pro..
1413 |  
1414 |     Most Useful Extensions : 
1415 |  
1416 |     Backslash Powered Scanner, Reflected Parameters, SAML Encoder/Decoder,
1417 |     Bypass WAF, CVSS Calculator, Java deserialization Scanner, Autorize,
1418 |     BurpSmartBuster, Content Type Converter, JSON Beautifier, PsychoPATH,
1419 |     Retire-js, J2EEScan, SAML Raider, Active Scan ++, UUID Detector, Wsdler, 
1420 |     Additional Scanner Checks, CO2 Flow, Hackvertor, Meth0dMan & Paramalyzer.
1421 |  
1422 |     Burp Suite Pro v1.6.67 : https://github.com/thehackingsage/burpsuite.git
1423 |     """)
1424 |     choiceburpext = raw_input("\n Press Enter and Go Back To Main Menu : ")
1425 |     if choiceburpext == "":
1426 |          clearScr()
1427 |          mapping()
1428 |     else:
1429 |         clearScr()
1430 |         mapping()
1431 | 
1432 | def intruderpayload():
1433 |     clearScr()
1434 |     print ("""
1435 |     A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, 
1436 |     malicious file uploads and web pentesting methodologies and checklists. 
1437 |     """)
1438 |     choiceintruderpayload = raw_input(" Do You Want To Download IntruderPayloads? (Y/N) : ")
1439 |     if choiceintruderpayload in yes:
1440 |         os.system("cd ~/bughunter/mapp/ && git clone https://github.com/1N3/IntruderPayloads.git")
1441 |     elif choiceintruderpayload in no:
1442 |         clearScr()
1443 |         mapping()
1444 |     elif choiceintruderpayload == "":
1445 |         clearScr()
1446 |         mapping()
1447 |     else:
1448 |         clearScr()
1449 |         mapping()
1450 |     
1451 | def allpayload():
1452 |     clearScr()
1453 |     print ("""
1454 |     A list of useful payloads and bypass for Web Application Security and Pentest/CTF
1455 |     """)
1456 |     choiceallpayload = raw_input(" Do You Want To Download PayloadsAllTheThings? (Y/N) : ")
1457 |     if choiceallpayload in yes:
1458 |         os.system("cd ~/bughunter/mapp/ && git clone https://github.com/swisskyrepo/PayloadsAllTheThings.git")
1459 |     elif choiceallpayload in no:
1460 |         clearScr()
1461 |         mapping()
1462 |     elif choiceallpayload == "":
1463 |         clearScr()
1464 |         mapping()
1465 |     else:
1466 |         clearScr()
1467 |         mapping()
1468 |     
1469 | def gitallsec():
1470 |     clearScr()
1471 |     print ("""
1472 |     A tool to capture all the git secrets by leveraging multiple open source git searching tools
1473 |     """)
1474 |     choicegitallsec = raw_input(" Do You Want To Download Git-all-Secrets? (Y/N) : ")
1475 |     if choicegitallsec in yes:
1476 |         os.system("cd ~/bughunter/mapp/ && git clone https://github.com/anshumanbh/git-all-secrets.git")
1477 |     elif choicegitallsec in no:
1478 |         clearScr()
1479 |         mapping()
1480 |     elif choicegitallsec == "":
1481 |         clearScr()
1482 |         mapping()
1483 |     else:
1484 |         clearScr()
1485 |         mapping()
1486 |     
1487 | # Discovery ###################################################################
1488 | 
1489 | def acunetix():
1490 |     clearScr()
1491 |     print ("""
1492 |     Acunetix is the leading web vulnerability scanner used by serious Fortune 500 companies 
1493 |     and widely acclaimed to include the most advanced SQL injection and XSS black box scanning 
1494 |     technology. It automatically crawls your websites and performs black box AND grey box hacking 
1495 |     techniques which finds dangerous vulnerabilities that can compromise your website and data.
1496 |     """)
1497 |     choiceacunetix = raw_input(" Do You Want To Download Acunetix Web Vulnerability Scanner? (Y/N) : ")
1498 |     if choiceacunetix in yes:
1499 |         os.system("firefox https://www.acunetix.com/vulnerability-scanner/download/")
1500 |     elif choiceacunetix in no:
1501 |         clearScr()
1502 |         discovery()
1503 |     elif choiceacunetix == "":
1504 |         clearScr()
1505 |         discovery()
1506 |     else:
1507 |         clearScr()
1508 |         discovery()
1509 |     
1510 | def arachni():
1511 |     clearScr()
1512 |     print ("""
1513 |     Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping 
1514 |     penetration testers and administrators evaluate the security of modern web applications.
1515 |     """)
1516 |     choicearachni = raw_input(" Do You Want To Download Arachni Web Vulnerability Scanner? (Y/N) : ")
1517 |     if choicearachni in yes:
1518 |         os.system("firefox http://www.arachni-scanner.com/download/")
1519 |     elif choicearachni in no:
1520 |         clearScr()
1521 |         discovery()
1522 |     elif choicearachni == "":
1523 |         clearScr()
1524 |         discovery()
1525 |     else:
1526 |         clearScr()
1527 |         discovery()
1528 |         
1529 | def burpsuite():
1530 |     clearScr()
1531 |     print ("""
1532 |     Burp or Burp Suite is a graphical tool for testing Web application security. 
1533 |     The tool is written in Java and developed by PortSwigger Web Security. 
1534 |     """)
1535 |     choiceburpsuite = raw_input(" Do You Want To Download Burp Suite Community Edition? (Y/N) : ")
1536 |     if choiceburpsuite in yes:
1537 |         os.system("firefox https://portswigger.net/burp/communitydownload")
1538 |     elif choiceburpsuite in no:
1539 |         clearScr()
1540 |         discovery()
1541 |     elif choiceburpsuite == "":
1542 |         clearScr()
1543 |         discovery()
1544 |     else:
1545 |         clearScr()
1546 |         discovery()
1547 | 
1548 | def nexpose():
1549 |     clearScr()
1550 |     print ("""
1551 |     Rapid7 Nexpose is a vulnerability scanner which aims to support the entire vulnerability 
1552 |     management lifecycle, including discovery, detection, verification, risk classification, 
1553 |     impact analysis, reporting and mitigation. It integrates with Rapid7's Metasploit for 
1554 |     vulnerability exploitation.
1555 |     """)
1556 |     choicenexpose = raw_input(" Do You Want To Download Nexpose? (Y/N) : ")
1557 |     if choicenexpose in yes:
1558 |         os.system("firefox https://www.rapid7.com/products/nexpose/download/")
1559 |     elif choicenexpose in no:
1560 |         clearScr()
1561 |         discovery()
1562 |     elif choicenexpose == "":
1563 |         clearScr()
1564 |         discovery()
1565 |     else:
1566 |         clearScr()
1567 |         discovery()
1568 | 
1569 | def nikto():
1570 |     clearScr()
1571 |     print ("""
1572 |     Nikto is an Open Source (GPL) web server scanner which performs comprehensive
1573 |     tests against web servers for multiple items, including over 6400 potentially 
1574 |     dangerous files/CGIs, checks for outdated versions of over 1200 servers, 
1575 |     and version specific problems on over 270 servers.
1576 | 
1577 |     """)
1578 |     choicenikto = raw_input(" Do You Want To Download Nikto? (Y/N) : ")
1579 |     if choicenikto in yes:
1580 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/sullo/nikto.git")
1581 |     elif choicenikto in no:
1582 |         clearScr()
1583 |         discovery()
1584 |     elif choicenikto == "":
1585 |         clearScr()
1586 |         discovery()
1587 |     else:
1588 |         clearScr()
1589 |         discovery()
1590 | 
1591 | def vega():
1592 |     clearScr()
1593 |     print ("""
1594 |     Vega is a free and open source web security scanner and web security testing platform 
1595 |     to test the security of web applications. Vega can help you find and validate SQL Injection, 
1596 |     Cross-Site Scripting (XSS), inadvertently disclosed sensitive information, and other vulnerabilities.
1597 |     """)
1598 |     choicevega = raw_input(" Do You Want To Download Vega? (Y/N) : ")
1599 |     if choicevega in yes:
1600 |         os.system("firefox https://subgraph.com/vega/download/")
1601 |     elif choicevega in no:
1602 |         clearScr()
1603 |         discovery()
1604 |     elif choicevega == "":
1605 |         clearScr()
1606 |         discovery()
1607 |     else:
1608 |         clearScr()
1609 |         discovery()
1610 | 
1611 | def wapiti():
1612 |     clearScr()
1613 |     print ("""
1614 |     Wapiti is a vulnerability scanner for web applications. It currently search vulnerabilities 
1615 |     like XSS, SQL and XPath injections, file inclusions, command execution, XXE injections, 
1616 |     CRLF injections, Server Side Request Forgery... It use the Python 3 programming language.
1617 |     """)
1618 |     choicewapiti = raw_input(" Do You Want To Download Wapiti? (Y/N) : ")
1619 |     if choicewapiti in yes:
1620 |         os.system("cd ~/bughunter/disc/ && wget https://sourceforge.net/projects/wapiti/files/wapiti/wapiti-3.0.1/wapiti3-3.0.1.zip")
1621 |     elif choicewapiti in no:
1622 |         clearScr()
1623 |         discovery()
1624 |     elif choicewapiti == "":
1625 |         clearScr()
1626 |         discovery()
1627 |     else:
1628 |         clearScr()
1629 |         discovery()
1630 | 
1631 | def websecscan():
1632 |     clearScr()
1633 |     discovery()
1634 | 
1635 | def websecsuite():
1636 |     clearScr()
1637 |     print ("""
1638 |     Fully integrated web-based platform to manage vulnerabilities across security teams, 
1639 |     investigating security breaches, or test for vulnerabilities.
1640 |     """)
1641 |     choicewebsecsuite = raw_input(" Do You Want To Use Security Suite? (Y/N) : ")
1642 |     if choicewebsecsuite in yes:
1643 |         os.system("firefox https://secapps.com/suite")
1644 |     elif choicewebsecsuite in no:
1645 |         clearScr()
1646 |         discovery()
1647 |     elif choicewebsecsuite == "":
1648 |         clearScr()
1649 |         discovery()
1650 |     else:
1651 |         clearScr()
1652 |         discovery()
1653 | 
1654 | def joomscan():
1655 |     clearScr()
1656 |     print ("""
1657 |     OWASP Joomla! Vulnerability Scanner (JoomScan) is an open source project, developed with the aim 
1658 |     of automating the task of vulnerability detection and reliability assurance in Joomla CMS deployments. 
1659 |     Implemented in Perl, this tool enables seamless and effortless scanning of Joomla installations, 
1660 |     while leaving a minimal footprint with its lightweight and modular architecture. It not only detects 
1661 |     known offensive vulnerabilities, but also is able to detect many misconfigurations and admin-level 
1662 |     shortcomings that can be exploited by adversaries to compromise the system. Furthermore, OWASP JoomScan 
1663 |     provides a user-friendly interface and compiles the final reports in both text and HTML formats for 
1664 |     ease of use and minimization of reporting overheads. 
1665 |     """)
1666 |     choicejoomscan = raw_input(" Do You Want To Download JoomScan? (Y/N) : ")
1667 |     if choicejoomscan in yes:
1668 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/rezasp/joomscan.git")
1669 |     elif choicejoomscan in no:
1670 |         clearScr()
1671 |         discovery()
1672 |     elif choicejoomscan == "":
1673 |         clearScr()
1674 |         discovery()
1675 |     else:
1676 |         clearScr()
1677 |         discovery()
1678 | 
1679 | def waaaf():
1680 |     clearScr()
1681 |     print ("""
1682 |     w3af is an open source web application security scanner which helps developers and penetration testers 
1683 |     identify and exploit vulnerabilities in their web applications. The scanner is able to identify 200+ 
1684 |     vulnerabilities, including Cross-Site Scripting, SQL injection and OS commanding.
1685 |     """)
1686 |     choicewaaaf = raw_input(" Do You Want To Download W3AF? (Y/N) : ")
1687 |     if choicewaaaf in yes:
1688 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/andresriancho/w3af.git")
1689 |     elif choicewaaaf in no:
1690 |         clearScr()
1691 |         discovery()
1692 |     elif choicewaaaf == "":
1693 |         clearScr()
1694 |         discovery()
1695 |     else:
1696 |         clearScr()
1697 |         discovery()
1698 | 
1699 | def zed():
1700 |     clearScr()
1701 |     print ("""
1702 |     OWASP ZAP is an open-source web application security scanner. It is intended to be used 
1703 |     by both those new to application security as well as professional penetration testers. 
1704 |     It is one of the most active OWASP projects and has been given Flagship status.
1705 |     """)
1706 |     choicezed = raw_input(" Do You Want To Download Wapiti? (Y/N) : ")
1707 |     if choicezed in yes:
1708 |         os.system("cd ~/bughunter/disc/ && wget https://github.com/zaproxy/zaproxy/releases/download/w2018-12-10/ZAP_WEEKLY_D-2018-12-10.zip")
1709 |     elif choicezed in no:
1710 |         clearScr()
1711 |         discovery()
1712 |     elif choicezed == "":
1713 |         clearScr()
1714 |         discovery()
1715 |     else:
1716 |         clearScr()
1717 |         discovery()
1718 | 
1719 | def wpscan():
1720 |     clearScr()
1721 |     print ("""
1722 |     WPScan is a free, for non-commercial use, black box WordPress vulnerability scanner written 
1723 |     for security professionals and blog maintainers to test the security of their sites. 
1724 |     https://www.wpscan.org
1725 |     """)
1726 |     choicewpscan = raw_input(" Do You Want To Download WP-Scan? (Y/N) : ")
1727 |     if choicewpscan in yes:
1728 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/wpscanteam/wpscan.git")
1729 |     elif choicewpscan in no:
1730 |         clearScr()
1731 |         discovery()
1732 |     elif choicewpscan == "":
1733 |         clearScr()
1734 |         discovery()
1735 |     else:
1736 |         clearScr()
1737 |         discovery()
1738 | 
1739 | def fuzzdb():
1740 |     clearScr()
1741 |     print ("""
1742 |     FuzzDB was created to increase the likelihood of causing and identifying conditions of security
1743 |     interest through dynamic application security testing. It's the first and most comprehensive 
1744 |     open dictionary of fault injection patterns, predictable resource locations, and regex for 
1745 |     matching server responses.
1746 |     """)
1747 |     choicefuzzdb = raw_input(" Do You Want To Download FuzzDB? (Y/N) : ")
1748 |     if choicefuzzdb in yes:
1749 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/fuzzdb-project/fuzzdb.git")
1750 |     elif choicefuzzdb in no:
1751 |         clearScr()
1752 |         discovery()
1753 |     elif choicefuzzdb == "":
1754 |         clearScr()
1755 |         discovery()
1756 |     else:
1757 |         clearScr()
1758 |         discovery()
1759 | 
1760 | def cewl():
1761 |     clearScr()
1762 |     print ("""
1763 |     CeWL is a Custom Word List Generator
1764 |     """)
1765 |     choicecewl = raw_input(" Do You Want To Download CeWL? (Y/N) : ")
1766 |     if choicecewl in yes:
1767 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/digininja/CeWL.git")
1768 |     elif choicecewl in no:
1769 |         clearScr()
1770 |         discovery()
1771 |     elif choicecewl == "":
1772 |         clearScr()
1773 |         discovery()
1774 |     else:
1775 |         clearScr()
1776 |         discovery()
1777 | 
1778 | def dirbuster():
1779 |     clearScr()
1780 |     print ("""
1781 |     DirBuster is a multi threaded java application designed to brute force directories 
1782 |     and files names on web/application servers.
1783 |     """)
1784 |     choicedirbuster = raw_input(" Do You Want To Download DirBuster? (Y/N) : ")
1785 |     if choicedirbuster in yes:
1786 |         os.system("firefox https://sourceforge.net/projects/dirbuster/")
1787 |     elif choicedirbuster in no:
1788 |         clearScr()
1789 |         discovery()
1790 |     elif choicedirbuster == "":
1791 |         clearScr()
1792 |         discovery()
1793 |     else:
1794 |         clearScr()
1795 |         discovery()
1796 | 
1797 | def dirb():
1798 |     clearScr()
1799 |     print ("""
1800 |     DIRB is a Web Content Scanner. It looks for existing (and/or hidden) Web Objects.
1801 |     It basically works by launching a dictionary based attack against a web server 
1802 |     and analizing the response.
1803 |     """)
1804 |     choicedirb = raw_input(" Do You Want To Download DIRB? (Y/N) : ")
1805 |     if choicedirb in yes:
1806 |         os.system("cd ~/bughunter/disc/ && wget https://sourceforge.net/projects/dirb/files/dirb/2.22/dirb222.tar.gz")
1807 |     elif choicedirb in no:
1808 |         clearScr()
1809 |         discovery()
1810 |     elif choicedirb == "":
1811 |         clearScr()
1812 |         discovery()
1813 |     else:
1814 |         clearScr()
1815 |         discovery()
1816 | 
1817 | def filebuster():
1818 |     clearScr()
1819 |     print ("""
1820 |     An extremely fast and flexible web fuzzer.
1821 |     """)
1822 |     choicefilebuster = raw_input(" Do You Want To Download FileBuster? (Y/N) : ")
1823 |     if choicefilebuster in yes:
1824 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/henshin/filebuster.git")
1825 |     elif choicefilebuster in no:
1826 |         clearScr()
1827 |         discovery()
1828 |     elif choicefilebuster == "":
1829 |         clearScr()
1830 |         discovery()
1831 |     else:
1832 |         clearScr()
1833 |         discovery()
1834 | 
1835 | def gobuster():
1836 |     clearScr()
1837 |     print ("""
1838 |     GoBuster is a tool used to brute-force URIs in web sites and DNS subdomains (with wildcard support).
1839 |     """)
1840 |     choicegobuster = raw_input(" Do You Want To Download GoBuster? (Y/N) : ")
1841 |     if choicegobuster in yes:
1842 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/OJ/gobuster.git")
1843 |     elif choicegobuster in no:
1844 |         clearScr()
1845 |         discovery()
1846 |     elif choicegobuster == "":
1847 |         clearScr()
1848 |         discovery()
1849 |     else:
1850 |         clearScr()
1851 |         discovery()
1852 | 
1853 | def dirsearch():  
1854 |     clearScr()
1855 |     print ("""
1856 |     Dirsearch is a simple command line tool designed to brute force directories and files in websites.
1857 |     """)
1858 |     choicedirsearch = raw_input(" Do You Want To Download Wapiti? (Y/N) : ")
1859 |     if choicedirsearch in yes:
1860 |         os.system("cd ~/bughunter/disc/ && git clone https://github.com/maurosoria/dirsearch.git")
1861 |     elif choicedirsearch in no:
1862 |         clearScr()
1863 |         discovery()
1864 |     elif choicedirsearch == "":
1865 |         clearScr()
1866 |         discovery()
1867 |     else:
1868 |         clearScr()
1869 |         discovery()
1870 | 
1871 | # Exploitation ################################################################
1872 | 
1873 | def xssradar():
1874 |     clearScr()
1875 |     print ("""
1876 |     XSS Radar is a tool that detects parameters and fuzzes them for cross-site scripting vulnerabilities.
1877 |     """)
1878 |     choicexssradar = raw_input(" Do You Want To Download XSS Radar? (Y/N) : ")
1879 |     if choicexssradar in yes:
1880 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/bugbountyforum/XSS-Radar.git")
1881 |     elif choicexssradar in no:
1882 |         clearScr()
1883 |         exploit()
1884 |     elif choicexssradar == "":
1885 |         clearScr()
1886 |         exploit()
1887 |     else:
1888 |         clearScr()
1889 |         exploit()
1890 | 
1891 | def xsshunter():
1892 |     clearScr()
1893 |     print ("""
1894 |     XSS Hunter allows you to find all kinds of cross-site scripting vulnerabilities, including the 
1895 |     often-missed blind XSS. The service works by hosting specialized XSS probes which, upon firing, 
1896 |     scan the page and send information about the vulnerable page to the XSS Hunter service..
1897 |     
1898 |     Create an XSS Hunter account at https://xsshunter.com/
1899 |     """)
1900 |     choicexsshunter = raw_input(" Do You Want To Download XSS Hunter? (Y/N) : ")
1901 |     if choicexsshunter in yes:
1902 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/mandatoryprogrammer/xsshunter")
1903 |     elif choicexsshunter in no:
1904 |         clearScr()
1905 |         exploit()
1906 |     elif choicexsshunter == "":
1907 |         clearScr()
1908 |         exploit()
1909 |     else:
1910 |         clearScr()
1911 |         exploit()
1912 |     
1913 | def xsshunterclient():
1914 |     clearScr()
1915 |     print ("""
1916 |     This tool can be used to generate correlated XSS payloads, these payloads are tagged with a unique 
1917 |     ID which can be used to track which HTTP request caused which XSS payload to fire. By using this tool 
1918 |     all of your injection attempts are tracked and the reports you generate will have the responsible 
1919 |     injection attempt included in the final output. This is useful since XSS payloads can often traverse 
1920 |     multiple services (and even protocols) before firing, so it's not always clear what injection caused 
1921 |     a certain XSS payload to fire.
1922 |     """)
1923 |     choicexsshunterclient = raw_input(" Do You Want To Download XSS Hunter Client? (Y/N) : ")
1924 |     if choicexsshunterclient in yes:
1925 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/mandatoryprogrammer/xsshunter_client.git")
1926 |     elif choicexsshunterclient in no:
1927 |         clearScr()
1928 |         exploit()
1929 |     elif choicexsshunterclient == "":
1930 |         clearScr()
1931 |         exploit()
1932 |     else:
1933 |         clearScr()
1934 |         exploit()
1935 | 
1936 | def domxss():
1937 |     clearScr()
1938 |     print ("""
1939 |     DOM XSS Scanner is an online tool that facilitates code review of web pages and JavaScript code 
1940 |     for potential DOM based XSS security vulnerabilities.
1941 |     """)
1942 |     choicedomxss = raw_input(" Do You Want To Download DOM XSS Scanner? (Y/N) : ")
1943 |     if choicedomxss in yes:
1944 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/yaph/domxssscanner.git")
1945 |     elif choicedomxss in no:
1946 |         clearScr()
1947 |         exploit()
1948 |     elif choicedomxss == "":
1949 |         clearScr()
1950 |         exploit()
1951 |     else:
1952 |         clearScr()
1953 |         exploit()
1954 |     
1955 | def xsser():
1956 |     clearScr()
1957 |     print ("""
1958 |     Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities.
1959 |     """)
1960 |     choicexsser = raw_input(" Do You Want To Download XSSer? (Y/N) : ")
1961 |     if choicexsser in yes:
1962 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/epsylon/xsser.git")
1963 |     elif choicexsser in no:
1964 |         clearScr()
1965 |         exploit()
1966 |     elif choicexsser == "":
1967 |         clearScr()
1968 |         exploit()
1969 |     else:
1970 |         clearScr()
1971 |         exploit()
1972 | 
1973 | def brutexss():
1974 |     clearScr()
1975 |     print ("""
1976 |     Cross-Site Scripting BruteForcer 
1977 |     """)
1978 |     choicebrutexss = raw_input(" Do You Want To Download BruteXSS? (Y/N) : ")
1979 |     if choicebrutexss in yes:
1980 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/rajeshmajumdar/BruteXSS.git")
1981 |     elif choicebrutexss in no:
1982 |         clearScr()
1983 |         exploit()
1984 |     elif choicebrutexss == "":
1985 |         clearScr()
1986 |         exploit()
1987 |     else:
1988 |         clearScr()
1989 |         exploit()
1990 | 
1991 | def xsstrike():
1992 |     clearScr()
1993 |     print("""
1994 |     XSStrike is a python script designed to detect and exploit XSS vulnerabilites.
1995 |     """)
1996 |     choicexsstrike = raw_input(" Do You Want To Download XSStrike (Y/N) : ")
1997 |     if choicexsstrike in yes:
1998 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/UltimateHackers/XSStrike.git && cd XSStrike && chmod +x * && pip install -r requirements.txt && clear && python xsstrike")
1999 |     elif choicexsstrike in no:
2000 |       clearScr()
2001 |       exploit()
2002 |     elif choicexsstrike == "":
2003 |          clearScr()
2004 |          exploit()
2005 |     else:
2006 |         clearScr()
2007 |         exploit()
2008 |         
2009 | def xssor():
2010 |     clearScr()
2011 |     print ("""
2012 |     XSSOR contains three major modules: Encode/Decode, Codz, Probe. Try Online Version: http://xssor.io
2013 |     """)
2014 |     choicexssor = raw_input(" Do You Want To Download XSSor? (Y/N) : ")
2015 |     if choicexssor in yes:
2016 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/evilcos/xssor2.git")
2017 |     elif choicexssor in no:
2018 |         clearScr()
2019 |         exploit()
2020 |     elif choicexssor == "":
2021 |         clearScr()
2022 |         exploit()
2023 |     else:
2024 |         clearScr()
2025 |         exploit()
2026 |         
2027 | def sqlmap():
2028 |     clearScr()
2029 |     print ("""
2030 |     Automatic SQL injection and database takeover tool. http://sqlmap.org
2031 |     """)
2032 |     choicesqlmap = raw_input ( "Do You Want To Download Sqlmap? (Y/N) : ")
2033 |     if choicesqlmap in yes:
2034 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/sqlmapproject/sqlmap.git")
2035 |     elif choicesqlmap in no:
2036 |         clearScr()
2037 |         exploit()
2038 |     elif choicesqlmap == "":
2039 |         clearScr()
2040 |         exploit()
2041 |     else:
2042 |         clearScr()
2043 |         exploit()
2044 | 
2045 | def oxmlxxe():
2046 |     clearScr()
2047 |     print ("""
2048 |     A tool for embedding XXE/XML exploits into different filetypes.
2049 |     """)
2050 |     choiceoxmlxxe = raw_input(" Do You Want To Download OXML-XXE? (Y/N) : ")
2051 |     if choiceoxmlxxe in yes:
2052 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/BuffaloWill/oxml_xxe.git")
2053 |     elif choiceoxmlxxe in no:
2054 |         clearScr()
2055 |         exploit()
2056 |     elif choiceoxmlxxe == "":
2057 |         clearScr()
2058 |         exploit()
2059 |     else:
2060 |         clearScr()
2061 |         exploit()
2062 | 
2063 | def xeeinj():
2064 |     clearScr()
2065 |     print ("""
2066 |     XXEinjector automates retrieving files using direct and out of band methods.
2067 |     Directory listing only works in Java applications. Bruteforcing method needs to be used for other applications.
2068 |     """)
2069 |     choicexeeinj = raw_input(" Do You Want To Download XXEinjector? (Y/N) : ")
2070 |     if choicexeeinj in yes:
2071 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/enjoiz/XXEinjector.git")
2072 |     elif choicexeeinj in no:
2073 |         clearScr()
2074 |         exploit()
2075 |     elif choicexeeinj == "":
2076 |         clearScr()
2077 |         exploit()
2078 |     else:
2079 |         clearScr()
2080 |         exploit()
2081 | 
2082 | def tplmap():
2083 |     clearScr()
2084 |     print ("""
2085 |     Server-Side Template Injection and Code Injection Detection and Exploitation Tool.
2086 |     """)
2087 |     choicetplmap = raw_input(" Do You Want To Download Tplmap? (Y/N) : ")
2088 |     if choicetplmap in yes:
2089 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/epinna/tplmap.git")
2090 |     elif choicetplmap in no:
2091 |         clearScr()
2092 |         exploit()
2093 |     elif choicetplmap == "":
2094 |         clearScr()
2095 |         exploit()
2096 |     else:
2097 |         clearScr()
2098 |         exploit()
2099 | 
2100 | def ssrfdetector():
2101 |     clearScr()
2102 |     print ("""
2103 |     Server-side request forgery detector.
2104 |     """)
2105 |     choicessrfdetector = raw_input(" Do You Want To Download SSRF-Detector? (Y/N) : ")
2106 |     if choicessrfdetector in yes:
2107 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/JacobReynolds/ssrfDetector.git")
2108 |     elif choicessrfdetector in no:
2109 |         clearScr()
2110 |         exploit()
2111 |     elif choicessrfdetector == "":
2112 |         clearScr()
2113 |         exploit()
2114 |     else:
2115 |         clearScr()
2116 |         exploit()
2117 | 
2118 | def groundcontrol():
2119 |     clearScr()
2120 |     print ("""
2121 |     A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
2122 |     """)
2123 |     choicegroundcontrol = raw_input(" Do You Want To Download Ground Control? (Y/N) : ")
2124 |     if choicegroundcontrol in yes:
2125 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/jobertabma/ground-control.git")
2126 |     elif choicegroundcontrol in no:
2127 |         clearScr()
2128 |         exploit()
2129 |     elif choicegroundcontrol == "":
2130 |         clearScr()
2131 |         exploit()
2132 |     else:
2133 |         clearScr()
2134 |         exploit()
2135 | 
2136 | def lfisuit():
2137 |     clearScr()
2138 |     print ("""
2139 |     Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner.
2140 |     """)
2141 |     choicelfisuit = raw_input(" Do You Want To Download LFISuit? (Y/N) : ")
2142 |     if choicelfisuit in yes:
2143 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/D35m0nd142/LFISuite.git")
2144 |     elif choicelfisuit in no:
2145 |         clearScr()
2146 |         exploit()
2147 |     elif choicelfisuit == "":
2148 |         clearScr()
2149 |         exploit()
2150 |     else:
2151 |         clearScr()
2152 |         exploit()
2153 | 
2154 | def genxbinavi():
2155 |     clearScr()
2156 |     print ("""
2157 |     File uploader.
2158 |     """)
2159 |     choicegenxbinavi = raw_input(" Do You Want To Download Gen-xbin-Avi? (Y/N) : ")
2160 |     if choicegenxbinavi in yes:
2161 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/neex/ffmpeg-avi-m3u-xbin.git")
2162 |     elif choicegenxbinavi in no:
2163 |         clearScr()
2164 |         exploit()
2165 |     elif choicegenxbinavi == "":
2166 |         clearScr()
2167 |         exploit()
2168 |     else:
2169 |         clearScr()
2170 |         exploit()
2171 | 
2172 | def gittools():
2173 |     clearScr()
2174 |     print ("""
2175 |     A repository with 3 tools for pwn'ing websites with .git repositories available.
2176 |     """)
2177 |     choicegittools = raw_input(" Do You Want To Download GitTools? (Y/N) : ")
2178 |     if choicegittools in yes:
2179 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/internetwache/GitTools.git")
2180 |     elif choicegittools in no:
2181 |         clearScr()
2182 |         exploit()
2183 |     elif choicegittools == "":
2184 |         clearScr()
2185 |         exploit()
2186 |     else:
2187 |         clearScr()
2188 |         exploit()
2189 | 
2190 | def dvcsripper():
2191 |     clearScr()
2192 |     print ("""
2193 |     Rip web accessible (distributed) version control systems: SVN/GIT/HG...
2194 |     """)
2195 |     choicedvcsripper = raw_input(" Do You Want To Download DVSC Ripper? (Y/N) : ")
2196 |     if choicedvcsripper in yes:
2197 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/kost/dvcs-ripper.git")
2198 |     elif choicedvcsripper in no:
2199 |         clearScr()
2200 |         exploit()
2201 |     elif choicedvcsripper == "":
2202 |         clearScr()
2203 |         exploit()
2204 |     else:
2205 |         clearScr()
2206 |         exploit()
2207 | 
2208 | def tkosubs():
2209 |     clearScr()
2210 |     print ("""
2211 |     A tool that can help detect and takeover subdomains with dead DNS records
2212 |     """)
2213 |     choicetkosubs = raw_input(" Do You Want To Download tko-subs? (Y/N) : ")
2214 |     if choicetkosubs in yes:
2215 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/anshumanbh/tko-subs.git")
2216 |     elif choicetkosubs in no:
2217 |         clearScr()
2218 |         exploit()
2219 |     elif choicetkosubs == "":
2220 |         clearScr()
2221 |         exploit()
2222 |     else:
2223 |         clearScr()
2224 |         exploit()
2225 | 
2226 | def subbruteforcer():
2227 |     clearScr()
2228 |     print ("""
2229 |     This app will bruteforce for exisiting subdomains and provide the IP address and Host information.
2230 |     """)
2231 |     choicesubbruteforcer = raw_input(" Do You Want To Download HostileSubBruteforcer? (Y/N) : ")
2232 |     if choicesubbruteforcer in yes:
2233 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/nahamsec/HostileSubBruteforcer.git")
2234 |     elif choicesubbruteforcer in no:
2235 |         clearScr()
2236 |         exploit()
2237 |     elif choicesubbruteforcer == "":
2238 |         clearScr()
2239 |         exploit()
2240 |     else:
2241 |         clearScr()
2242 |         exploit()
2243 | 
2244 | def secondorder():
2245 |     clearScr()
2246 |     print ("""
2247 |     Second-order subdomain takeover scanner.
2248 |     """)
2249 |     choicesecondorder = raw_input(" Do You Want To Download Second-Order? (Y/N) : ")
2250 |     if choicesecondorder in yes:
2251 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/mhmdiaa/second-order.git")
2252 |     elif choicesecondorder in no:
2253 |         clearScr()
2254 |         exploit()
2255 |     elif choicesecondorder == "":
2256 |         clearScr()
2257 |         exploit()
2258 |     else:
2259 |         clearScr()
2260 |         exploit()
2261 | 
2262 | def racetheweb():
2263 |     clearScr()
2264 |     print ("""
2265 |     Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline. http://RaceTheWeb.io
2266 |     """)
2267 |     choiceracetheweb = raw_input(" Do You Want To Download Race The Web? (Y/N) : ")
2268 |     if choiceracetheweb in yes:
2269 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/insp3ctre/race-the-web.git")
2270 |     elif choiceracetheweb in no:
2271 |         clearScr()
2272 |         exploit()
2273 |     elif choiceracetheweb == "":
2274 |         clearScr()
2275 |         exploit()
2276 |     else:
2277 |         clearScr()
2278 |         exploit()
2279 | 
2280 | def corstest():
2281 |     clearScr()
2282 |     print ("""
2283 |     A simple CORS misconfiguration scanner.
2284 |     """)
2285 |     choicecorstest = raw_input(" Do You Want To Download CORStest? (Y/N) : ")
2286 |     if choicecorstest in yes:
2287 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/RUB-NDS/CORStest.git")
2288 |     elif choicecorstest in no:
2289 |         clearScr()
2290 |         exploit()
2291 |     elif choicecorstest == "":
2292 |         clearScr()
2293 |         exploit()
2294 |     else:
2295 |         clearScr()
2296 |         exploit()
2297 | 
2298 | def rcestrutspwn():
2299 |     clearScr()
2300 |     print ("""
2301 |     An exploit for Apache Struts CVE-2017-5638.
2302 |     """)
2303 |     choicercestrutspwn = raw_input(" Do You Want To Download RCE struts-pwn? (Y/N) : ")
2304 |     if choicercestrutspwn in yes:
2305 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/mazen160/struts-pwn.git")
2306 |     elif choicercestrutspwn in no:
2307 |         clearScr()
2308 |         exploit()
2309 |     elif choicercestrutspwn == "":
2310 |         clearScr()
2311 |         exploit()
2312 |     else:
2313 |         clearScr()
2314 |         exploit()
2315 | 
2316 | def ysoserial():
2317 |     clearScr()
2318 |     print ("""
2319 |     A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
2320 |     """)
2321 |     choiceysoserial = raw_input(" Do You Want To Download Y-So-Serial? (Y/N) : ")
2322 |     if choiceysoserial in yes:
2323 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/GoSecure/ysoserial.git")
2324 |     elif choiceysoserial in no:
2325 |         clearScr()
2326 |         exploit()
2327 |     elif choiceysoserial == "":
2328 |         clearScr()
2329 |         exploit()
2330 |     else:
2331 |         clearScr()
2332 |         exploit()
2333 | 
2334 | def phpggc():
2335 |     clearScr()
2336 |     print ("""
2337 |     PHPGGC is a library of unserialize() payloads along with a tool to generate them, from command line or programmatically. 
2338 |     """)
2339 |     choicephpggc = raw_input(" Do You Want To Download PHP Generic Gadget Chains? (Y/N) : ")
2340 |     if choicephpggc in yes:
2341 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/ambionics/phpggc.git")
2342 |     elif choicephpggc in no:
2343 |         clearScr()
2344 |         exploit()
2345 |     elif choicephpggc == "":
2346 |         clearScr()
2347 |         exploit()
2348 |     else:
2349 |         clearScr()
2350 |         exploit()
2351 | 
2352 | def retirejs():
2353 |     clearScr()
2354 |     print ("""
2355 |     scanner detecting the use of JavaScript libraries with known vulnerabilities.
2356 |     http://retirejs.github.io/retire.js/
2357 |     """)
2358 |     choiceretirejs = raw_input(" Do You Want To Download Retire.js? (Y/N) : ")
2359 |     if choiceretirejs in yes:
2360 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/RetireJS/retire.js.git")
2361 |     elif choiceretirejs in no:
2362 |         clearScr()
2363 |         exploit()
2364 |     elif choiceretirejs == "":
2365 |         clearScr()
2366 |         exploit()
2367 |     else:
2368 |         clearScr()
2369 |         exploit()
2370 | 
2371 | def getsploit():
2372 |     clearScr()
2373 |     print ("""
2374 |     Command line utility for searching and downloading exploits.
2375 |     """)
2376 |     choicegetsploit = raw_input(" Do You Want To Download Getsploit? (Y/N) : ")
2377 |     if choicegetsploit in yes:
2378 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/vulnersCom/getsploit.git")
2379 |     elif choicegetsploit in no:
2380 |         clearScr()
2381 |         exploit()
2382 |     elif choicegetsploit == "":
2383 |         clearScr()
2384 |         exploit()
2385 |     else:
2386 |         clearScr()
2387 |         exploit()
2388 | 
2389 | def findsploit():
2390 |     clearScr()
2391 |     print ("""
2392 |     Find exploits in local and online databases instantly. https://crowdshield.com
2393 |     """)
2394 |     choicefindsploit = raw_input(" Do You Want To Download Findsploit? (Y/N) : ")
2395 |     if choicefindsploit in yes:
2396 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/1N3/Findsploit.git")
2397 |     elif choicefindsploit in no:
2398 |         clearScr()
2399 |         exploit()
2400 |     elif choicefindsploit == "":
2401 |         clearScr()
2402 |         exploit()
2403 |     else:
2404 |         clearScr()
2405 |         exploit()
2406 | 
2407 | def bfac():
2408 |     clearScr()
2409 |     print ("""
2410 |     BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts
2411 |     that may disclose the web-application's source code.
2412 |     """)
2413 |     choicebfac = raw_input(" Do You Want To Download BFAC? (Y/N) : ")
2414 |     if choicebfac in yes:
2415 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/mazen160/bfac.git")
2416 |     elif choicebfac in no:
2417 |         clearScr()
2418 |         exploit()
2419 |     elif choicebfac == "":
2420 |         clearScr()
2421 |         exploit()
2422 |     else:
2423 |         clearScr()
2424 |         exploit()
2425 | 
2426 | def wpscann():
2427 |     clearScr()
2428 |     print ("""
2429 |     WPScan is a free, for non-commercial use, black box WordPress vulnerability scanner
2430 |     written for security professionals and blog maintainers to test the security of their sites.
2431 |     https://www.wpscan.org
2432 |     """)
2433 |     choicewpscann = raw_input(" Do You Want To Download WPScan? (Y/N) : ")
2434 |     if choicewpscann in yes:
2435 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/wpscanteam/wpscan.git")
2436 |     elif choicewpscann in no:
2437 |         clearScr()
2438 |         exploit()
2439 |     elif choicewpscann == "":
2440 |         clearScr()
2441 |         exploit()
2442 |     else:
2443 |         clearScr()
2444 |         exploit()
2445 | 
2446 | def cmsmap():
2447 |     clearScr()
2448 |     print ("""
2449 |     CMSmap is a python open source CMS scanner that automates the process of detecting 
2450 |     security flaws of the most popular CMSs.
2451 |     """)
2452 |     choicecmsmap = raw_input(" Do You Want To Download CMSmap? (Y/N) : ")
2453 |     if choicecmsmap in yes:
2454 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/Dionach/CMSmap.git")
2455 |     elif choicecmsmap in no:
2456 |         clearScr()
2457 |         exploit()
2458 |     elif choicecmsmap == "":
2459 |         clearScr()
2460 |         exploit()
2461 |     else:
2462 |         clearScr()
2463 |         exploit()
2464 | 
2465 | def joomscan():
2466 |     clearScr()
2467 |     print ("""
2468 |     OWASP Joomla Vulnerability Scanner Project.
2469 |     https://www.owasp.org/index.php/Category:OWASP_Joomla_Vulnerability_Scanner_Project
2470 |     """)
2471 |     choicejoomscan = raw_input(" Do You Want To Download Joomscan? (Y/N) : ")
2472 |     if choicejoomscan in yes:
2473 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/rezasp/joomscan.git")
2474 |     elif choicejoomscan in no:
2475 |         clearScr()
2476 |         exploit()
2477 |     elif choicejoomscan == "":
2478 |         clearScr()
2479 |         exploit()
2480 |     else:
2481 |         clearScr()
2482 |         exploit()
2483 | 
2484 | def jsonwtt():
2485 |     clearScr()
2486 |     print ("""
2487 |     A toolkit for testing, tweaking and cracking JSON Web Tokens
2488 |     """)
2489 |     choicejsonwtt = raw_input(" Do You Want To Download The JSON Web Token Toolkit? (Y/N) : ")
2490 |     if choicejsonwtt in yes:
2491 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/ticarpi/jwt_tool.git")
2492 |     elif choicejsonwtt in no:
2493 |         clearScr()
2494 |         exploit()
2495 |     elif choicejsonwtt == "":
2496 |         clearScr()
2497 |         exploit()
2498 |     else:
2499 |         clearScr()
2500 |         exploit()
2501 | 
2502 | def wfuzz():
2503 |     clearScr()
2504 |     print ("""
2505 |     Web application fuzzer. http://wfuzz.org
2506 |     """)
2507 |     choicewfuzz = raw_input(" Do You Want To Download Wfuzz? (Y/N) : ")
2508 |     if choicewfuzz in yes:
2509 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/xmendez/wfuzz.git")
2510 |     elif choicewfuzz in no:
2511 |         clearScr()
2512 |         exploit()
2513 |     elif choicewfuzz == "":
2514 |         clearScr()
2515 |         exploit()
2516 |     else:
2517 |         clearScr()
2518 |         exploit()
2519 | 
2520 | def patator():
2521 |     clearScr()
2522 |     print ("""
2523 |     Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
2524 |     """)
2525 |     choicepatator = raw_input(" Do You Want To Download Patator? (Y/N) : ")
2526 |     if choicepatator in yes:
2527 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/lanjelot/patator.git")
2528 |     elif choicepatator in no:
2529 |         clearScr()
2530 |         exploit()
2531 |     elif choicepatator == "":
2532 |         clearScr()
2533 |         exploit()
2534 |     else:
2535 |         clearScr()
2536 |         exploit()
2537 | 
2538 | def hydra():
2539 |     clearScr()
2540 |     print ("""
2541 |     This tool is a proof of concept code, to give researchers and security consultants
2542 |     the possibility to show how easy it would be to gain unauthorized access from remote to a system.
2543 |     """)
2544 |     choicehydra = raw_input(" Do You Want To Download Hydra? (Y/N) : ")
2545 |     if choicehydra in yes:
2546 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/vanhauser-thc/thc-hydra.git")
2547 |     elif choicehydra in no:
2548 |         clearScr()
2549 |         exploit()
2550 |     elif choicehydra == "":
2551 |         clearScr()
2552 |         exploit()
2553 |     else:
2554 |         clearScr()
2555 |         exploit()
2556 | 
2557 | def changeme():
2558 |     clearScr()
2559 |     print ("""
2560 |     A default credential scanner.
2561 |     """)
2562 |     choicechangeme = raw_input(" Do You Want To Download ChangeMe? (Y/N) : ")
2563 |     if choicechangeme in yes:
2564 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/ztgrace/changeme.git")
2565 |     elif choicechangeme in no:
2566 |         clearScr()
2567 |         exploit()
2568 |     elif choicechangeme == "":
2569 |         clearScr()
2570 |         exploit()
2571 |     else:
2572 |         clearScr()
2573 |         exploit()
2574 | 
2575 | def wappalyzer():
2576 |     clearScr()
2577 |     print ("""
2578 |     Wappalyzer is a cross-platform utility that uncovers the technologies used on websites.
2579 |     It detects content management systems, ecommerce platforms, web frameworks, 
2580 |     server software, analytics tools and many more.
2581 |     """)
2582 |     choicewappalyzer = raw_input(" Do You Want To Visit Wappalyzer? (Y/N) : ")
2583 |     if choicewappalyzer in yes:
2584 |         os.system("firefox https://wappalyzer.com")
2585 |     elif choicewappalyzer in no:
2586 |         clearScr()
2587 |         exploit()
2588 |     elif choicewappalyzer == "":
2589 |         clearScr()
2590 |         exploit()
2591 |     else:
2592 |         clearScr()
2593 |         exploit()
2594 | 
2595 | def builtwith():
2596 |     clearScr()
2597 |     print ("""
2598 |     Find out what websites are Built With.
2599 |     """)
2600 |     choicebuiltwith = raw_input(" Do You Want To Visit BuiltWith? (Y/N) : ")
2601 |     if choicebuiltwith in yes:
2602 |         os.system("firefox https://builtwith.com/")
2603 |     elif choicebuiltwith in no:
2604 |         clearScr()
2605 |         exploit()
2606 |     elif choicebuiltwith == "":
2607 |         clearScr()
2608 |         exploit()
2609 |     else:
2610 |         clearScr()
2611 |         exploit()
2612 | 
2613 | def wafwoof():
2614 |     clearScr()
2615 |     print ("""
2616 |     WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
2617 |     """)
2618 |     choicewafwoof = raw_input(" Do You Want To Download WAFW00F? (Y/N) : ")
2619 |     if choicewafwoof in yes:
2620 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/EnableSecurity/wafw00f.git")
2621 |     elif choicewafwoof in no:
2622 |         clearScr()
2623 |         exploit()
2624 |     elif choicewafwoof == "":
2625 |         clearScr()
2626 |         exploit()
2627 |     else:
2628 |         clearScr()
2629 |         exploit()
2630 | 
2631 | def assetnote():
2632 |     clearScr()
2633 |     print ("""
2634 |     Assetnote is a subdomains supervision tools which allow for real-time notifications 
2635 |     about newlly added subdomains.
2636 |     """)
2637 |     choiceassetnote = raw_input(" Do You Want To Download AssetNote? (Y/N) : ")
2638 |     if choiceassetnote in yes:
2639 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/infosec-au/assetnote")
2640 |     elif choiceassetnote in no:
2641 |         clearScr()
2642 |         exploit()
2643 |     elif choiceassetnote == "":
2644 |         clearScr()
2645 |         exploit()
2646 |     else:
2647 |         clearScr()
2648 |         exploit()
2649 | 
2650 | def jsbeautifier():
2651 |     clearScr()
2652 |     print ("""
2653 |     Beautifier for javascript. https://beautifier.io
2654 |     """)
2655 |     choicejsbeautifier = raw_input(" Do You Want To Download JavaScript Beautifier? (Y/N) : ")
2656 |     if choicejsbeautifier in yes:
2657 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/beautify-web/js-beautify.git")
2658 |     elif choicejsbeautifier in no:
2659 |         clearScr()
2660 |         exploit()
2661 |     elif choicejsbeautifier == "":
2662 |         clearScr()
2663 |         exploit()
2664 |     else:
2665 |         clearScr()
2666 |         exploit()
2667 | 
2668 | def linkfinder():
2669 |     clearScr()
2670 |     print ("""
2671 |     A python script that finds endpoints in JavaScript files.
2672 |     """)
2673 |     choicelinkfinder = raw_input(" Do You Want To Download LinkFinder? (Y/N) : ")
2674 |     if choicelinkfinder in yes:
2675 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/GerbenJavado/LinkFinder.git")
2676 |     elif choicelinkfinder in no:
2677 |         clearScr()
2678 |         exploit()
2679 |     elif choicelinkfinder == "":
2680 |         clearScr()
2681 |         exploit()
2682 |     else:
2683 |         clearScr()
2684 |         exploit()
2685 | 
2686 | def mobsf():
2687 |     clearScr()
2688 |     print ("""
2689 |     Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows)
2690 |     pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis 
2691 |     and web API testing. https://opensecurity.in
2692 |     """)
2693 |     choicemobsf = raw_input(" Do You Want To Download Mobile-Security-Framework? (Y/N) : ")
2694 |     if choicemobsf in yes:
2695 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/MobSF/Mobile-Security-Framework-MobSF.git")
2696 |     elif choicemobsf in no:
2697 |         clearScr()
2698 |         exploit()
2699 |     elif choicemobsf == "":
2700 |         clearScr()
2701 |         exploit()
2702 |     else:
2703 |         clearScr()
2704 |         exploit()
2705 | 
2706 | def genymotion():
2707 |     clearScr()
2708 |     print ("""
2709 |     Android Emulator.
2710 |     """)
2711 |     choicegenymotion = raw_input(" Do You Want To Download GenyMotion? (Y/N) : ")
2712 |     if choicegenymotion in yes:
2713 |         os.system("firefox https://www.genymotion.com/")
2714 |     elif choicegenymotion in no:
2715 |         clearScr()
2716 |         exploit()
2717 |     elif choicegenymotion == "":
2718 |         clearScr()
2719 |         exploit()
2720 |     else:
2721 |         clearScr()
2722 |         exploit()
2723 | 
2724 | def apktool():
2725 |     clearScr()
2726 |     print ("""
2727 |     A tool for reverse engineering Android apk files.
2728 |     """)
2729 |     choiceapktool = raw_input(" Do You Want To Download APKTool? (Y/N) : ")
2730 |     if choiceapktool in yes:
2731 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/iBotPeaches/apktool.git")
2732 |     elif choiceapktool in no:
2733 |         clearScr()
2734 |         exploit()
2735 |     elif choiceapktool == "":
2736 |         clearScr()
2737 |         exploit()
2738 |     else:
2739 |         clearScr()
2740 |         exploit()
2741 | 
2742 | def dex2jar():
2743 |     clearScr()
2744 |     print ("""
2745 |     Tools to work with android .dex and java .class files.
2746 |     """)
2747 |     choicedex2jar = raw_input(" Do You Want To Download dex2jar? (Y/N) : ")
2748 |     if choicedex2jar in yes:
2749 |         os.system("firefox https://sourceforge.net/projects/dex2jar/files/dex2jar-2.0.zip/download")
2750 |     elif choicedex2jar in no:
2751 |         clearScr()
2752 |         exploit()
2753 |     elif choicedex2jar == "":
2754 |         clearScr()
2755 |         exploit()
2756 |     else:
2757 |         clearScr()
2758 |         exploit()
2759 | 
2760 | def jdgui():
2761 |     clearScr()
2762 |     print ("""
2763 |     A standalone graphical utility that displays Java sources from CLASS files.
2764 |     """)
2765 |     choicejdgui = raw_input(" Do You Want To Download JD-GUI? (Y/N) : ")
2766 |     if choicejdgui in yes:
2767 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/java-decompiler/jd-gui.git")
2768 |     elif choicejdgui in no:
2769 |         clearScr()
2770 |         exploit()
2771 |     elif choicejdgui == "":
2772 |         clearScr()
2773 |         exploit()
2774 |     else:
2775 |         clearScr()
2776 |         exploit()
2777 | 
2778 | def idb():
2779 |     clearScr()
2780 |     print ("""
2781 |     idb is a tool to simplify some common tasks for iOS pentesting and research. 
2782 |     Originally there was a command line version of the tool, but it is no longer 
2783 |     under development so you should get the GUI version. http://www.idbtool.com/
2784 |     """)
2785 |     choiceidb = raw_input(" Do You Want To Download idb? (Y/N) : ")
2786 |     if choiceidb in yes:
2787 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/dmayer/idb.git")
2788 |     elif choiceidb in no:
2789 |         clearScr()
2790 |         exploit()
2791 |     elif choiceidb == "":
2792 |         clearScr()
2793 |         exploit()
2794 |     else:
2795 |         clearScr()
2796 |         exploit()
2797 | 
2798 | # Reporting ###################################################################
2799 | 
2800 | def bugtips():
2801 |     os.system('clear')
2802 |     print ("""
2803 |     Tips for Bug Hunting | https://thehackingsage.github.io
2804 |     -----------------------------------------------------------
2805 |     
2806 |     * Always Read The Source Code.
2807 |     * Get Subdomains and Start with Unpopuler Domains. 
2808 |     * Always Check The Backend CMS & Backend Language.
2809 |     * Use Google Dorks.
2810 |     * Check Each Request and Response.
2811 |     * Active Mind - Think Out of The Box. ;)
2812 |     """)
2813 |     choicebugtips = raw_input(" Press Enter and Go Back To Menu : ")
2814 |     if choicebugtips == "":
2815 |         clearScr()
2816 |         reporting()
2817 |     else:
2818 |         clearScr()
2819 |         reporting()
2820 | 
2821 | def platforms():
2822 |     os.system('clear')
2823 |     print (""" 
2824 |     Bug Bounty Platforms | https://thehackingsage.github.io
2825 |     -----------------------------------------------------------
2826 |     
2827 |     Bugcrowd : https://bugcrowd.com/
2828 |     Hackerone : https://hackerone.com/    
2829 |     Google : https://google.com/about/appsecurity/    
2830 |     Facebook : https://facebook.com/BugBounty/
2831 |     Open Bug Bounty : https://www.openbugbounty.org/ 
2832 |     HackTrophy : https://hacktrophy.com/
2833 |     BountyGraph : https://bountygraph.com/
2834 |     PlugBounty : https://www.plugbounty.com/
2835 |     intigriti : https://www.intigriti.com/
2836 |     SlowMist : https://www.slowmist.com/
2837 |     Synack : https://synack.com/    
2838 |     Japan Bug bounty Program : https://bugbounty.jp/    
2839 |     Cobalt : https://cobalt.io/    
2840 |     Zerocopter : https://zerocopter.com/    
2841 |     Hackenproof : https://hackenproof.com/    
2842 |     BountyFactory : https://bountyfactory.io    
2843 |     AntiHack : https://www.antihack.me/    
2844 |     
2845 |     More Bug Bounty Programs List : https://bugcrowd.com/bug-bounty-list/\n
2846 |     """)
2847 |     choiceplatforms = raw_input(" Press Enter and Go Back To Menu : ")
2848 |     if choiceplatforms == "":
2849 |         clearScr()
2850 |         reporting()
2851 |     else:
2852 |         clearScr()
2853 |         reporting()
2854 |         
2855 | def pocs():
2856 |     os.system('clear')
2857 |     print (""" 
2858 |     Proof of Concepts and Write-Ups from Other Hackers..
2859 |     -----------------------------------------------------------
2860 |     
2861 |     Bug Bounty write-ups : https://forum.bugcrowd.com/t/researcher-resources-bounty-bug-write-ups/
2862 |     Awesome Bug Bounty : https://github.com/djadmin/awesome-bug-bounty
2863 |     SecurityBreached-BugBounty POC : https://blog.securitybreached.org/category/bugbounty-poc/
2864 |     Facebook Hunting POC : https://m.facebook.com/notes/phwd/facebook-bug-bounties/707217202701640/?__tn__=%2As-R
2865 |     Bug Hunting Tutorials : https://forum.bugcrowd.com/t/researcher-resources-tutorials/370
2866 |     PentesterLand Bug Bounty Writeups : https://pentester.land/list-of-bug-bounty-writeups.html
2867 |     Hackerone POC Reports : http://h1.nobbd.de/
2868 |     Bug Bounty POC : http://www.xsses.com/
2869 |     Netsec on Reddit : https://www.reddit.com/r/netsec
2870 |     Bug Bounty World : https://bugbountyworld.com/\n
2871 |     """)
2872 |     choiceplatforms = raw_input(" Press Enter and Go Back To Menu : ")
2873 |     if choiceplatforms == "":
2874 |         clearScr()
2875 |         reporting()
2876 |     else:
2877 |         clearScr()
2878 |         reporting()
2879 | 
2880 | def cheatsheet():
2881 |     os.system('clear')
2882 |     print (""" 
2883 |     Cheat Sheets for Bug Hunting | https://thehackingsage.github.io
2884 |     -----------------------------------------------------------------
2885 |     
2886 |     Pentest Bookmarks : https://github.com/kurobeats/pentest-bookmarks/blob/master/BookmarksList.md
2887 |     Awesome OSINT Cheat-Sheet : https://github.com/jivoi/awesome-osint
2888 |     Awesome Pentest Cheat-Sheet : https://github.com/enaqx/awesome-pentest
2889 |     Bug Bounty Cheat-Sheet : https://github.com/EdOverflow/bugbounty-cheatsheet
2890 |     Awesome Hacking Cheat-Sheet : https://github.com/Hack-with-Github/Awesome-Hacking
2891 |     Awesome-Infosec Cheat-Sheet : https://github.com/onlurking/awesome-infose
2892 |     SQL Injection Cheat-Sheet : http://pentestmonkey.net/blog/mssql-sql-injection-cheat-sheet/
2893 |     XSS Cheat-Sheet : https://gist.github.com/kurobeats/9a613c9ab68914312cbb415134795b45
2894 |     XXE Payload : https://gist.github.com/staaldraad/01415b990939494879b4\n
2895 |     """)
2896 |     choiceplatforms = raw_input(" Press Enter and Go Back To Menu : ")
2897 |     if choiceplatforms == "":
2898 |         clearScr()
2899 |         reporting()
2900 |     else:
2901 |         clearScr()
2902 |         reporting()
2903 | 
2904 | def eyewitness():
2905 |     clearScr()
2906 |     print("""
2907 |     EyeWitness is designed to take screenshots of websites, RDP services, and open VNC servers, 
2908 |     provide some server header info, and identify default credentials if possible.
2909 |     """)
2910 |     choiceeyewitness = raw_input(" Do You Want To Download EyeWitness (Y/N) : ")
2911 |     if choiceeyewitness in yes:
2912 |         os.system("cd ~/bughunter/repo/ && git clone https://github.com/FortyNorthSecurity/EyeWitness.git")
2913 |     elif choiceeyewitness in no:
2914 |       clearScr()
2915 |       reporting()
2916 |     elif choiceeyewitness == "":
2917 |          clearScr()
2918 |          reporting()
2919 |     else:
2920 |         clearScr()
2921 |         reporting()
2922 | 
2923 | def httpscreenshot():
2924 |     clearScr()
2925 |     print("""
2926 |     HTTPScreenshot is a tool for grabbing screenshots and HTML of large numbers of websites.
2927 |     The goal is for it to be both thorough and fast which can sometimes oppose each other.
2928 |     """)
2929 |     choicehttpscreenshot = raw_input(" Do You Want To Download HTTPScreenshot (Y/N) : ")
2930 |     if choicehttpscreenshot in yes:
2931 |         os.system("cd ~/bughunter/repo/ && git clone https://github.com/breenmachine/httpscreenshot.git")
2932 |     elif choicehttpscreenshot in no:
2933 |       clearScr()
2934 |       reporting()
2935 |     elif choicehttpscreenshot == "":
2936 |          clearScr()
2937 |          reporting()
2938 |     else:
2939 |         clearScr()
2940 |         reporting()
2941 | 
2942 | def bbtemplates():
2943 |     clearScr()
2944 |     print("""
2945 |     A collection of templates for bug bounty reporting, with guides on how to write and fill out.
2946 |     """)
2947 |     choicebbtemplates = raw_input(" Do You Want To Download Bug Bounty Templates (Y/N) : ")
2948 |     if choicebbtemplates in yes:
2949 |         os.system("cd ~/bughunter/repo/ && git clone https://github.com/ZephrFish/BugBountyTemplates.git")
2950 |     elif choicebbtemplates in no:
2951 |       clearScr()
2952 |       reporting()
2953 |     elif choicebbtemplates == "":
2954 |          clearScr()
2955 |          reporting()
2956 |     else:
2957 |         clearScr()
2958 |         reporting()
2959 | 
2960 | def gentemplates():
2961 |     clearScr()
2962 |     print("""
2963 |     A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use 
2964 |     variables in markdown based files to easily replace the variables with content. Data is 
2965 |     saved temporarily in local storage. PHP is only needed to generate the list of files in 
2966 |     the dropdown of templates.
2967 |     """)
2968 |     choicegentemplates = raw_input(" Do You Want To Download Template Generator (Y/N) : ")
2969 |     if choicegentemplates in yes:
2970 |         os.system("cd ~/bughunter/expt/ && git clone https://github.com/fransr/template-generator.git")
2971 |     elif choicegentemplates in no:
2972 |       clearScr()
2973 |       reporting()
2974 |     elif choicegentemplates == "":
2975 |          clearScr()
2976 |          reporting()
2977 |     else:
2978 |         clearScr()
2979 |         reporting()
2980 | 
2981 | ###############################################################################
2982 | 
2983 | def clearScr():
2984 |     """
2985 |     clear the screen in case of GNU/Linux or Windows
2986 |     """
2987 |     if system() == 'Linux':
2988 |         os.system('clear')
2989 |     if system() == 'Windows':
2990 |         os.system('cls')        
2991 | 
2992 | ###############################################################################
2993 | 
2994 | if __name__ == "__main__":
2995 |     try:
2996 |         menu()
2997 |     except KeyboardInterrupt:
2998 |         print(" Finishing Up...\r"),
2999 |         os.system("clear")
3000 |         time.sleep(0.25)


--------------------------------------------------------------------------------
/install.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash/
 2 | #######################################
 3 | # Bash script to install apps on a new system (Ubuntu)
 4 | # Written by @AnonyminHack5 from http://aamnah.com
 5 | #######################################
 6 | 
 7 | ## Clear Screen ##
 8 | clear
 9 | 
10 | ## Update packages and Upgrade system
11 | apt-get update -y
12 | 
13 | ## Git ##
14 | echo '###Installing Git..'
15 | apt-get install git -y
16 | 
17 | ## firefox ##
18 | echo '###Installing firefox..'
19 | pkg install firefox
20 | 
21 | ## Requirements ##
22 | echo '###Installing hydra...'
23 | pkg install hydra
24 | 
25 | ##Requirements##
26 | echo -e "\e[1;31m Packages fully satisfied. Tool created by AnonyminHack5"
27 | 
28 | 
29 | ##Run tool##
30 | echo -e "\e[1;32m Run python2 bughunter.py"


--------------------------------------------------------------------------------