laravelN00b – Automated Scan .env Files And Checking Debug Mode In Victim Host

January 14, 2020
Incorrect configuration allows you to access .env files or reading env variables. LaravelN00b automated scan .env files and checking debug mode in victim host.

laravelN00b

Scan rationale

  • Scan host.
  • Resolve IP adress and check .env file in IP Adress
  • Checking debug mode Laravel ( Read .env variables )

Installation
1 – Install with installer.sh
chmod +x installer.sh
./installer.sh
2 – Install manual
go get github.com/briandowns/spinner
go get github.com/christophwitzko/go-curl
go run main.go --hostname victim.host
or
go build laravelN00b main.go

Run
./laravelN00b --hostname victim.host

Download laravelN00b
Original Source

You may have missed

image

[HUNTERS] – Ransomware Victim: Ace Laboratories Limited

November 25, 2024
CISA Logo

CISA: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage

November 25, 2024
CISA Logo

CISA: CISA Releases Four Industrial Control Systems Advisories

November 25, 2024
CISA Logo

CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

November 25, 2024
CISA Logo

CISA: CISA Releases Three Industrial Control Systems Advisories

November 25, 2024