Salts
Salts
You can build this without much issue against alpine 3.3 docker image, I just setup an alias skipfish = docker run ....
This did the trick for me, I was looking for specifically malformed packets and it would die on me. Thanks!
https://github.com/cisagov/skeleton-python-library/blob/develop/setup.py has indeed updated and removed this truly bizarre way to read a version string
@Pascal-0x90 @DoctorEww While it might not be exploitable, I had always understood that urllib (not urrllib3 pip module) is not thread safe. Does that pose any issues here with use...
Per https://github.com/cisagov/RedEye/issues/12 you can upload the gt.redeye file that is present in the repo.
As this sits in the current version it produces a ton of false positives, any WAF/etc will cause it to return positive.
I think the string matcher needs to be more finely grained. e.g. ``` 404: "Cannot GET /autodiscover/autodiscover.json?Email=autodiscover/[email protected]&Protocol=ActiveSync" ``` is a positive match on a lot of servers that absolutely aren't...
It was a little painful to get something old enough that this actually worked on, so I was using the following docker compose def when testing and on entrypoint of...
That's fair, this really slipped off my radar with other bit things going on. While the maintainer apparently slipped bugs back in unannaounced, the user base of this is pretty...
Yeah, please don't use this software. It looks like the dev quietly reintroduced vulns with no documentation.