├── .gitignore ├── README.md ├── __init__.py ├── benchmark ├── directory │ ├── exclude.py │ └── inlcude.py ├── go-sec-code │ ├── .gitignore │ ├── README.md │ ├── cmd │ │ └── taint │ │ │ └── main.go │ ├── conf │ │ └── app.conf │ ├── controllers │ │ ├── cmdi.go │ │ ├── cors.go │ │ ├── crlfi.go │ │ ├── default.go │ │ ├── favicon.go │ │ ├── jsonp.go │ │ ├── sqli.go │ │ ├── ssrf.go │ │ ├── ssti.go │ │ ├── traversal.go │ │ ├── upload.go │ │ ├── xss.go │ │ ├── xxe.go │ │ └── zipslip.go │ ├── favicon.ico │ ├── go-sec-code.png │ ├── go.mod │ ├── go.sum │ ├── main.go │ ├── models │ │ └── user.go │ ├── routers │ │ └── router.go │ ├── static │ │ ├── xml │ │ │ └── xxe.xml │ │ └── xss │ │ │ ├── poc.pdf │ │ │ └── poc.svg │ ├── utils │ │ ├── gogs.go │ │ └── securityUtils.go │ └── views │ │ ├── fileUpload.tpl │ │ ├── index.tpl │ │ ├── ssti.tpl │ │ ├── xss.tpl │ │ └── xxe.tpl └── include.py ├── chatgptscan.py ├── cli.py ├── loader ├── __init__.py ├── loader.py └── project.py ├── manager ├── __init__.py ├── manager.py └── select.py ├── module ├── __init__.py ├── common_scan.py └── taint_sink_scan.py ├── requirements.txt └── utils ├── __init__.py └── util.py /.gitignore: -------------------------------------------------------------------------------- 1 | __pycache__ 2 | .vscode 3 | test -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/README.md -------------------------------------------------------------------------------- /__init__.py: -------------------------------------------------------------------------------- 1 | pass -------------------------------------------------------------------------------- /benchmark/directory/exclude.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /benchmark/directory/inlcude.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /benchmark/go-sec-code/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/.gitignore -------------------------------------------------------------------------------- /benchmark/go-sec-code/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/README.md -------------------------------------------------------------------------------- /benchmark/go-sec-code/cmd/taint/main.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/cmd/taint/main.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/conf/app.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/conf/app.conf -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/cmdi.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/cmdi.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/cors.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/cors.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/crlfi.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/crlfi.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/default.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/default.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/favicon.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/favicon.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/jsonp.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/jsonp.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/sqli.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/sqli.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/ssrf.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/ssrf.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/ssti.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/ssti.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/traversal.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/traversal.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/upload.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/upload.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/xss.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/xss.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/xxe.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/xxe.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/controllers/zipslip.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/controllers/zipslip.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/favicon.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/favicon.ico -------------------------------------------------------------------------------- /benchmark/go-sec-code/go-sec-code.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/go-sec-code.png -------------------------------------------------------------------------------- /benchmark/go-sec-code/go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/go.mod -------------------------------------------------------------------------------- /benchmark/go-sec-code/go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/go.sum -------------------------------------------------------------------------------- /benchmark/go-sec-code/main.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/main.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/models/user.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/models/user.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/routers/router.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/routers/router.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/static/xml/xxe.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/static/xml/xxe.xml -------------------------------------------------------------------------------- /benchmark/go-sec-code/static/xss/poc.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/static/xss/poc.pdf -------------------------------------------------------------------------------- /benchmark/go-sec-code/static/xss/poc.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/static/xss/poc.svg -------------------------------------------------------------------------------- /benchmark/go-sec-code/utils/gogs.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/utils/gogs.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/utils/securityUtils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/utils/securityUtils.go -------------------------------------------------------------------------------- /benchmark/go-sec-code/views/fileUpload.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/views/fileUpload.tpl -------------------------------------------------------------------------------- /benchmark/go-sec-code/views/index.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/views/index.tpl -------------------------------------------------------------------------------- /benchmark/go-sec-code/views/ssti.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/views/ssti.tpl -------------------------------------------------------------------------------- /benchmark/go-sec-code/views/xss.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/views/xss.tpl -------------------------------------------------------------------------------- /benchmark/go-sec-code/views/xxe.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/benchmark/go-sec-code/views/xxe.tpl -------------------------------------------------------------------------------- /benchmark/include.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /chatgptscan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/chatgptscan.py -------------------------------------------------------------------------------- /cli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/cli.py -------------------------------------------------------------------------------- /loader/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/loader/__init__.py -------------------------------------------------------------------------------- /loader/loader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/loader/loader.py -------------------------------------------------------------------------------- /loader/project.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/loader/project.py -------------------------------------------------------------------------------- /manager/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/manager/__init__.py -------------------------------------------------------------------------------- /manager/manager.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/manager/manager.py -------------------------------------------------------------------------------- /manager/select.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/manager/select.py -------------------------------------------------------------------------------- /module/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/module/__init__.py -------------------------------------------------------------------------------- /module/common_scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/module/common_scan.py -------------------------------------------------------------------------------- /module/taint_sink_scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/module/taint_sink_scan.py -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- 1 | fire == 0.5.0 2 | openai 3 | typing -------------------------------------------------------------------------------- /utils/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/utils/__init__.py -------------------------------------------------------------------------------- /utils/util.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/YulinSec/ChatGPTScanner/HEAD/utils/util.py --------------------------------------------------------------------------------