search

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
https://dalfox.hahwul.com
MIT License
3.59k stars 402 forks source link

No banner output #180

Closed R0X4R closed 3 years ago

R0X4R commented 3 years ago

Hi @hahwul, I have used &> /dev/null to hide the banner from the output but it's still showing in the terminal. I also used --silence flag but nothing works can you please make an update that gives a silent output.

end@root:~/bugbounty$ dalfox file xss.txt pipe --silence --no-color --no-spinner > tee dalfox.txt

    _..._
  .' .::::.   __   _   _    ___ _ __ __
 :  :::::::: |  \ / \ | |  | __/ \\ V /
 :  :::::::: | o ) o || |_ | _( o )) (
 '. '::::::' |__/|_n_||___||_| \_//_n_\
   '-.::''

Parameter Analysis and XSS Scanning tool based on golang
Finder Of XSS and Dal is the Korean pronunciation of moon. @hahwul

end@root:~/bugbounty$
end@root:~/bugbounty$ dalfox file xss.txt pipe --silence --no-color --no-spinner -o dalfox.txt &>/dev/null

    _..._
  .' .::::.   __   _   _    ___ _ __ __
 :  :::::::: |  \ / \ | |  | __/ \\ V /
 :  :::::::: | o ) o || |_ | _( o )) (
 '. '::::::' |__/|_n_||___||_| \_//_n_\
   '-.::''

Parameter Analysis and XSS Scanning tool based on golang
Finder Of XSS and Dal is the Korean pronunciation of moon. @hahwul

end@root:~/bugbounty$
github-actions[bot] commented 3 years ago

Thank you for your first issue report :D

hahwul commented 3 years ago

Hi @R0X4R First and all, thank you for submit issue! I fixed this bug. Banner will now be subject to the --silence option.

it can be used in the go-get version of dev, and later in the 2.3.0 release.

$ go get github.com/hahwul/dalfox 
$ ~/go/bin/dalfox

or 

$ git clone https://github.com/hahwul/dalfox
$ cd dalfox 
$ go install
$ ~/go/bin/dalfox

Testing

$ dalfox url http://testphp.vulnweb.com/listproducts.php --silence
[POC][G][BUILT-IN/dalfox-error-mysql/GET] http://testphp.vulnweb.com/listproducts.php
[POC][G][BUILT-IN/dalfox-error-mysql2/GET] http://testphp.vulnweb.com/listproducts.php
$ dalfox url http://testphp.vulnweb.com/listproducts.php

    _..._
  .' .::::.   __   _   _    ___ _ __ __ 
 :  :::::::: |  \ / \ | |  | __/ \\ V / 
 :  :::::::: | o ) o || |_ | _( o )) (  
 '. '::::::' |__/|_n_||___||_| \_//_n_\                           
   '-.::''

Parameter Analysis and XSS Scanning tool based on golang
Finder Of XSS and Dal is the Korean pronunciation of moon. @hahwul
[*] Using single target mode
[*] Target URL: http://testphp.vulnweb.com/listproducts.php
...snip...

스크린샷, 2021-02-06 22-47-11

And if there is a problem, please reopen the issue! Enjoy a nice rest of the day :D