search

codingo / NoSQLMap

Automated NoSQL database enumeration and web application exploitation tool.
GNU General Public License v3.0
2.88k stars 577 forks source link

Fix for issue 105 -- more robust IP and hostname validation #107

Closed bbeale closed 4 years ago

bbeale commented 4 years ago

Added a regex to look for hostname and IPV4 patterns. If this first check passes, then the ipaddress module from the standard library is used to validate the IP address. If a hostname is detected instead of an IP address, it will try to get the fully qualified domain name. Keeping within the standard library, socket.getfqdn was used for this step. Let me know if you think the FQDN part might be overkill.

I added this for options 1 and 7, which prompt the user for an IP address or domain. I left out the domain part for option 7.

Edit to remove stale tag.

github-actions[bot] commented 4 years ago

Stale pull request message

drwetter commented 4 years ago

Why the F^Wheck was this automatically closed?

Wondering whether this project is still maintained.

bbeale commented 4 years ago

Clearly I wasn't quick enough with my edit to avoid getting auto closed.

He did respond to one of my other threads though @drwetter, I think he's busy but getting to them slowly but surely.

drwetter commented 4 years ago

Ok but why is the bot enabled if he/she cannot get to it atm?

drwetter commented 3 years ago

Is this project still alive?

bbeale commented 3 years ago

Doesn't look like it @drwetter. It can always be reopened if the maintainer wants this PR, but I'm not going to worry about it anymore until that happens.

tcstool commented 3 years ago

I am the original creator of this tool back in 2014 and turned it over to another maintainer a few years ago due to time constraints I had. I would love to see the project keep going but I don't think the current maintainer has done a good job devoting time to it. It really needs a complete overhaul and rewrite.

On Tue, Oct 27, 2020 at 10:44 AM Ben notifications@github.com wrote:

Doesn't look like it @drwetter https://github.com/drwetter. It can always be reopened if the maintainer wants this PR, but I'm not going to worry about it anymore until that happens.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/codingo/NoSQLMap/pull/107#issuecomment-717334344, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAY3TXUZHCQJEEMBE5MNBXLSM3THTANCNFSM4OFF22CA .