├── .gitignore ├── .vscode ├── launch.json └── settings.json ├── Addon ├── __init__.py └── placeholder.py ├── LICENSE ├── README.md ├── VWGen.py ├── __init__.py ├── core ├── __init__.py ├── attack │ ├── __init__.py │ ├── attack.py │ ├── mod_crlf.py │ ├── mod_exec.py │ ├── mod_expand.py │ ├── mod_lfi.py │ ├── mod_nosqli.py │ ├── mod_sqli.py │ ├── mod_unfilter.py │ └── mod_xss.py ├── config │ └── attacks │ │ ├── crlf │ │ ├── crlfPayloads.txt │ │ └── home.php │ │ ├── exec │ │ ├── execPayloads.txt │ │ └── ip.php │ │ ├── expand │ │ └── expandPayloads.txt │ │ ├── lfi │ │ ├── info.php │ │ └── lfiPayloads.txt │ │ ├── nosqli │ │ ├── mongo.config.php │ │ ├── mongodb.so │ │ └── nosqliPayloads.txt │ │ ├── php.ini.sample │ │ ├── sqli │ │ ├── mysql.config.php │ │ └── sqliPayloads.txt │ │ ├── unfilter │ │ └── unfilterPayloads.txt │ │ └── xss │ │ └── xssPayloads.txt ├── customization │ ├── __init__.py │ ├── refObject.py │ └── sourceHelper.py ├── file │ ├── __init__.py │ ├── filePointer.py │ └── logger.py └── shell │ ├── __init__.py │ ├── shellAgent.py │ ├── shellCompleter.py │ ├── shellCompletion.py │ ├── shellLexer.py │ ├── shellSuggester.py │ └── shellSuggestion.py ├── demo ├── __init__.py ├── demo.py └── themes │ ├── htcf_web_practice-master.zip │ ├── startbootstrap-agency-1.0.6.zip │ └── startbootstrap-clean-blog-1.0.4.zip ├── examples ├── 2016_ais3_web3 │ └── sample.py ├── 2016_hitcon_ctf_quals │ └── leaking │ │ └── sample.py ├── 2016_hitcon_training_web_security_advanced │ ├── lab1 │ │ └── lab1.py │ ├── lab2 │ │ └── lab2.py │ ├── lab3 │ │ └── lab3.txt │ ├── pre-exam │ │ ├── htcf_web_practice-master.zip │ │ ├── pre-exam.py │ │ ├── start.sh │ │ └── users.sql.gz │ └── workout │ │ ├── sqli_error.py │ │ └── sqli_union.py ├── 2016_hitcon_training_web_security_basic │ ├── lab1 │ │ ├── lab1-1.py │ │ ├── lab1-2.py │ │ └── lab1-3.py │ ├── lab2 │ │ └── lab2.py │ ├── pre-exam │ │ └── pre-exam.py │ └── workout │ │ └── sqli.py └── 2016_xctf_final_web │ └── sample.py ├── pylintrc └── requirements.txt /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/.gitignore -------------------------------------------------------------------------------- /.vscode/launch.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/.vscode/launch.json -------------------------------------------------------------------------------- /.vscode/settings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/.vscode/settings.json -------------------------------------------------------------------------------- /Addon/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Addon/placeholder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/Addon/placeholder.py -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/README.md -------------------------------------------------------------------------------- /VWGen.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/VWGen.py -------------------------------------------------------------------------------- /__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/__init__.py -------------------------------------------------------------------------------- /core/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /core/attack/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /core/attack/attack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/attack.py -------------------------------------------------------------------------------- /core/attack/mod_crlf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_crlf.py -------------------------------------------------------------------------------- /core/attack/mod_exec.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_exec.py -------------------------------------------------------------------------------- /core/attack/mod_expand.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_expand.py -------------------------------------------------------------------------------- /core/attack/mod_lfi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_lfi.py -------------------------------------------------------------------------------- /core/attack/mod_nosqli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_nosqli.py -------------------------------------------------------------------------------- /core/attack/mod_sqli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_sqli.py -------------------------------------------------------------------------------- /core/attack/mod_unfilter.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_unfilter.py -------------------------------------------------------------------------------- /core/attack/mod_xss.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/attack/mod_xss.py -------------------------------------------------------------------------------- /core/config/attacks/crlf/crlfPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/crlf/crlfPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/crlf/home.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/crlf/home.php -------------------------------------------------------------------------------- /core/config/attacks/exec/execPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/exec/execPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/exec/ip.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/exec/ip.php -------------------------------------------------------------------------------- /core/config/attacks/expand/expandPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/expand/expandPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/lfi/info.php: -------------------------------------------------------------------------------- 1 | 4 | -------------------------------------------------------------------------------- /core/config/attacks/lfi/lfiPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/lfi/lfiPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/nosqli/mongo.config.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/nosqli/mongo.config.php -------------------------------------------------------------------------------- /core/config/attacks/nosqli/mongodb.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/nosqli/mongodb.so -------------------------------------------------------------------------------- /core/config/attacks/nosqli/nosqliPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/nosqli/nosqliPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/php.ini.sample: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/php.ini.sample -------------------------------------------------------------------------------- /core/config/attacks/sqli/mysql.config.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/sqli/mysql.config.php -------------------------------------------------------------------------------- /core/config/attacks/sqli/sqliPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/sqli/sqliPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/unfilter/unfilterPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/unfilter/unfilterPayloads.txt -------------------------------------------------------------------------------- /core/config/attacks/xss/xssPayloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/config/attacks/xss/xssPayloads.txt -------------------------------------------------------------------------------- /core/customization/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /core/customization/refObject.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/customization/refObject.py -------------------------------------------------------------------------------- /core/customization/sourceHelper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/customization/sourceHelper.py -------------------------------------------------------------------------------- /core/file/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /core/file/filePointer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/file/filePointer.py -------------------------------------------------------------------------------- /core/file/logger.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/file/logger.py -------------------------------------------------------------------------------- /core/shell/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /core/shell/shellAgent.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/shell/shellAgent.py -------------------------------------------------------------------------------- /core/shell/shellCompleter.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/shell/shellCompleter.py -------------------------------------------------------------------------------- /core/shell/shellCompletion.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/shell/shellCompletion.py -------------------------------------------------------------------------------- /core/shell/shellLexer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/shell/shellLexer.py -------------------------------------------------------------------------------- /core/shell/shellSuggester.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/core/shell/shellSuggester.py -------------------------------------------------------------------------------- /core/shell/shellSuggestion.py: -------------------------------------------------------------------------------- 1 | # -*- coding: utf-8 -*- 2 | 3 | SET_SUGGESTIONS = '=' 4 | -------------------------------------------------------------------------------- /demo/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo/demo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/demo/demo.py -------------------------------------------------------------------------------- /demo/themes/htcf_web_practice-master.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/demo/themes/htcf_web_practice-master.zip -------------------------------------------------------------------------------- /demo/themes/startbootstrap-agency-1.0.6.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/demo/themes/startbootstrap-agency-1.0.6.zip -------------------------------------------------------------------------------- /demo/themes/startbootstrap-clean-blog-1.0.4.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/demo/themes/startbootstrap-clean-blog-1.0.4.zip -------------------------------------------------------------------------------- /examples/2016_ais3_web3/sample.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_ais3_web3/sample.py -------------------------------------------------------------------------------- /examples/2016_hitcon_ctf_quals/leaking/sample.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_ctf_quals/leaking/sample.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/lab1/lab1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/lab1/lab1.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/lab2/lab2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/lab2/lab2.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/lab3/lab3.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/lab3/lab3.txt -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/pre-exam/htcf_web_practice-master.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/pre-exam/htcf_web_practice-master.zip -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/pre-exam/pre-exam.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/pre-exam/pre-exam.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/pre-exam/start.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/pre-exam/start.sh -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/pre-exam/users.sql.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/pre-exam/users.sql.gz -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/workout/sqli_error.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/workout/sqli_error.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_advanced/workout/sqli_union.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_advanced/workout/sqli_union.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/lab1/lab1-1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/lab1/lab1-1.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/lab1/lab1-2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/lab1/lab1-2.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/lab1/lab1-3.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/lab1/lab1-3.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/lab2/lab2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/lab2/lab2.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/pre-exam/pre-exam.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/pre-exam/pre-exam.py -------------------------------------------------------------------------------- /examples/2016_hitcon_training_web_security_basic/workout/sqli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_hitcon_training_web_security_basic/workout/sqli.py -------------------------------------------------------------------------------- /examples/2016_xctf_final_web/sample.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/examples/2016_xctf_final_web/sample.py -------------------------------------------------------------------------------- /pylintrc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/pylintrc -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/qazbnm456/VWGen/HEAD/requirements.txt --------------------------------------------------------------------------------