From 46ab0e0d9852744bbd17d18a8b63f43921a7b4b4 Mon Sep 17 00:00:00 2001 From: Michael Edie Date: Sat, 2 Jun 2018 23:12:52 +0100 Subject: network/dirb: Added (Web Content Scanner). Signed-off-by: David Spencer --- network/dirb/README | 14 ++++++ network/dirb/dirb.SlackBuild | 100 +++++++++++++++++++++++++++++++++++++++++++ network/dirb/dirb.info | 10 +++++ network/dirb/slack-desc | 19 ++++++++ 4 files changed, 143 insertions(+) create mode 100644 network/dirb/README create mode 100644 network/dirb/dirb.SlackBuild create mode 100644 network/dirb/dirb.info create mode 100644 network/dirb/slack-desc diff --git a/network/dirb/README b/network/dirb/README new file mode 100644 index 0000000000..3e85a34679 --- /dev/null +++ b/network/dirb/README @@ -0,0 +1,14 @@ +DIRB is a Web Content Scanner. It looks for existing (and/or hidden) Web +Objects. It basically works by launching a dictionary based attack against +a web server and analizing the response. + +DIRB comes with a set of preconfigured attack wordlists for easy usage but +you can use your custom wordlists. Also DIRB sometimes can be used as a +classic CGI scanner, but remember it is a content scanner not a vulnerability +scanner. + +DIRB main purpose is to help in professional web application auditing. +Especially in security related testing. It covers some holes not covered by +classic web vulnerability scanners. DIRB looks for specific web objects that +other generic CGI scanners can't look for. It doesn't search vulnerabilities +nor does it look for web content that could be vulnerable. diff --git a/network/dirb/dirb.SlackBuild b/network/dirb/dirb.SlackBuild new file mode 100644 index 0000000000..7fd1a25f74 --- /dev/null +++ b/network/dirb/dirb.SlackBuild @@ -0,0 +1,100 @@ +#!/bin/sh + +# Slackware build script for dirb + +# Copyright 2018 Michael Edie, USA +# All rights reserved. +# +# Redistribution and use of this script, with or without modification, is +# permitted provided that the following conditions are met: +# +# 1. Redistributions of this script must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# +# THIS SOFTWARE IS PROVIDED BY THE AUTHOR "AS IS" AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, +# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, +# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; +# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR +# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF +# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +PRGNAM=dirb +VERSION=${VERSION:-222} +BUILD=${BUILD:-1} +TAG=${TAG:-_SBo} + +if [ -z "$ARCH" ]; then + case "$( uname -m )" in + i?86) ARCH=i586 ;; + arm*) ARCH=arm ;; + *) ARCH=$( uname -m ) ;; + esac +fi + +CWD=$(pwd) +TMP=${TMP:-/tmp/SBo} +PKG=$TMP/package-$PRGNAM +OUTPUT=${OUTPUT:-/tmp} + +if [ "$ARCH" = "i586" ]; then + SLKCFLAGS="-O2 -march=i586 -mtune=i686" + LIBDIRSUFFIX="" +elif [ "$ARCH" = "i686" ]; then + SLKCFLAGS="-O2 -march=i686 -mtune=i686" + LIBDIRSUFFIX="" +elif [ "$ARCH" = "x86_64" ]; then + SLKCFLAGS="-O2 -fPIC" + LIBDIRSUFFIX="64" +else + SLKCFLAGS="-O2" + LIBDIRSUFFIX="" +fi + +set -e + +rm -rf $PKG +mkdir -p $TMP $PKG $OUTPUT +cd $TMP +rm -rf $PRGNAM$VERSION +tar xvf $CWD/$PRGNAM$VERSION.tar.gz +cd $PRGNAM$VERSION +chown -R root:root . +find -L . \ + \( -perm 777 -o -perm 775 -o -perm 750 -o -perm 711 -o -perm 555 \ + -o -perm 511 \) -exec chmod 755 {} \; -o \ + \( -perm 666 -o -perm 664 -o -perm 640 -o -perm 600 -o -perm 444 \ + -o -perm 440 -o -perm 400 \) -exec chmod 644 {} \; + +# Fix broken permissions +chmod 755 configure + +CFLAGS="$SLKCFLAGS" \ +CXXFLAGS="$SLKCFLAGS" \ +./configure \ + --prefix=/usr \ + --libdir=/usr/lib${LIBDIRSUFFIX} \ + --sysconfdir=/etc \ + --localstatedir=/var \ + --mandir=/usr/man \ + --docdir=/usr/doc/$PRGNAM-$VERSION \ + --build=$ARCH-slackware-linux + +make +make install-strip DESTDIR=$PKG + +find $PKG/usr/man -type f -exec gzip -9 {} \; +for i in $( find $PKG/usr/man -type l ) ; do ln -s $( readlink $i ).gz $i.gz ; rm $i ; done + +mkdir -p $PKG/usr/doc/$PRGNAM-$VERSION +cp -a README.txt LICENSE.txt docs/* $PKG/usr/doc/$PRGNAM-$VERSION +cat $CWD/$PRGNAM.SlackBuild > $PKG/usr/doc/$PRGNAM-$VERSION/$PRGNAM.SlackBuild + +mkdir -p $PKG/install +cat $CWD/slack-desc > $PKG/install/slack-desc + +cd $PKG +/sbin/makepkg -l y -c n $OUTPUT/$PRGNAM-$VERSION-$ARCH-$BUILD$TAG.${PKGTYPE:-tgz} diff --git a/network/dirb/dirb.info b/network/dirb/dirb.info new file mode 100644 index 0000000000..ed2cb9400c --- /dev/null +++ b/network/dirb/dirb.info @@ -0,0 +1,10 @@ +PRGNAM="dirb" +VERSION="222" +HOMEPAGE="https://dirb.sourceforge.net/" +DOWNLOAD="https://downloads.sourceforge.net/project/dirb/dirb/2.22/dirb222.tar.gz" +MD5SUM="3df86e4d9448c30846e34fcb3ecc6be0" +DOWNLOAD_x86_64="" +MD5SUM_x86_64="" +REQUIRES="" +MAINTAINER="Michael Edie" +EMAIL="michael@sawbox.net" diff --git a/network/dirb/slack-desc b/network/dirb/slack-desc new file mode 100644 index 0000000000..07b140fab5 --- /dev/null +++ b/network/dirb/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. +# Line up the first '|' above the ':' following the base package name, and +# the '|' on the right side marks the last column you can put a character in. +# You must make exactly 11 lines for the formatting to be correct. It's also +# customary to leave one space after the ':' except on otherwise blank lines. + + |-----handy-ruler------------------------------------------------------| +dirb: dirb (Web Content Scanner) +dirb: +dirb: DIRB main purpose is to help in professional web application auditing. +dirb: Especially in security related testing. It covers some holes not +dirb: covered by classic web vulnerability scanners. DIRB looks for specific +dirb: web objects that other generic CGI scanners can't look for. It doesn't +dirb: search vulnerabilities nor does it look for web content that could be +dirb: vulnerable. +dirb: +dirb: https://dirb.sourceforge.net/ +dirb: -- cgit v1.2.3