Add support for aliases during catch-all scenarios

codingo / VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

GNU General Public License v3.0

1.19k stars 231 forks source link

Add support for aliases during catch-all scenarios #4

Closed codingo closed 7 years ago

codingo commented 7 years ago

As the current codebase detects catch-all scenarios by hashing the pages and providing feedback to the user of the unique content this can be defeated when aliases are used (as the hash will match).

Support needs to be added to help detect these scenarios to insure incorrect information about unique pages isn't being served back to the end user.

codingo commented 7 years ago

Somewhat supported by #9 since you can play around with the unique-depth flag if you have some indication of the count of aliases (or play around with it until you find a set of results you're comfortable with.

Unsure if there's something further to be done here? Open to any and all ideas.

codingo commented 7 years ago

Going to close this as I feel the requirement is satisfied.

More work coming from @timkent on fuzzy logic for dynamic pages that will help enhance this feature but which doesn't need tracking by this particular issue (making it largely redundant).