Comments (9)
Ok great. Here are the recommended header/parameter wordlists: https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner/tree/master/wordlists
Or you can also skip the header / parameter tests with --skiptest 'headers,parameters'
from web-cache-vulnerability-scanner.
Hello @tyloren0a,
Have you added GOPATH/bin to your PATH?
Depending on your OS and Golang Configuration $HOME/go/bin/Web-Cache-Vulnerability-Scanner
or %USERPROFILE%\go\bin\Web-Cache-Vulnerability-Scanner
might work
from web-cache-vulnerability-scanner.
Hi @m10x ,
I set GOPATH and other go tools work (subfinder for example) but this tool does not work despite downloading all packages.
from web-cache-vulnerability-scanner.
Can you please provide more information:
- What's your OS and your golang version
- What is the output of the go install command?
from web-cache-vulnerability-scanner.
Hi @m10x ,
I am using wsl2 (Kali Linux) on windows 11.
My go version : go version go1.21.6 linux/amd64
Since it has already downloaded the tool's packages, it does not give an output at the moment.
from web-cache-vulnerability-scanner.
Hm ok. Can you please show the output of:
go install -n github.com/Hackmanit/Web-Cache-Vulnerability-Scanner@latest
This returns, in my case, the output:
touch /home/m10x/go/bin/Web-Cache-Vulnerability-Scanner
Further, can you please provide the output of:
go env
from web-cache-vulnerability-scanner.
Hi @m10x ,
go install -n github.com/Hackmanit/Web-Cache-Vulnerability-Scanner@latest
output : touch /home/tyloren/go/bin/Web-Cache-Vulnerability-Scanner
❯ go env
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/home/tyloren/.cache/go-build'
GOENV='/home/tyloren/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/home/tyloren/go/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/home/tyloren/go'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.21.6'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD=''
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build2816589105=/tmp/go-build -gno-record-gcc-switches'
from web-cache-vulnerability-scanner.
Are you able to run /home/tyloren/go/bin/Web-Cache-Vulnerability-Scanner
?
If not, does it exist and what does file /home/tyloren/go/bin/Web-Cache-Vulnerability-Scanner
return?
from web-cache-vulnerability-scanner.
Hi @m10x ,
I think the command works but the file name is "Web-Cache-Vulnerability-Scanner".
WCVS v1.1.2 started at 2024-02-01_03-45-14
[ERR] The specified header file path wordlists/headers couldn't be found: open wordlists/headers: no such file or directory
Use the flag "-hw path/to/wordlist" to specify the path to a header wordlist
from web-cache-vulnerability-scanner.
Related Issues (15)
- false positives occur, if the scanned website changes HOT 1
- Add wordlists to releases HOT 1
- Installation not possible HOT 4
- Installation failed HOT 3
- Installation failed HOT 4
- [Feature] Use custom user agent HOT 1
- runtime error: invalid memory address or nil pointer dereference HOT 3
- Can't run binary in MacOS HOT 2
- Add Cache Hit Headers Manually HOT 1
- Add Curl Commands to the Report HOT 1
- Cannot Specify "Host" Header while scanning HOT 1
- question about alerts HOT 2
- Prevent reporting 401/429 responses HOT 5
- Malware detection. Binary and compiled hashes do not match HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from web-cache-vulnerability-scanner.