scancss.py

#!/usr/bin/env python
# -*- coding: utf-8 -*-

__Name__ = "scancss"
__description__ = "scancss is a xss vulnariblity scanner tool."
__author__ = "Md. Nur habib"
__copyright__ = "Copyright 2022."
__license__ = "GNU v.20"
__version__ = "v1.0.1"
__email__ = "thenurhabib@gmail.com"


# Import Modules.
import argparse
from core import *
from random import randint
from Log import *
from helper import *
from crawler import *


# Style class
class Style:
    reset = '\033[0m'
    bold = '\033[01m'
    underline = '\033[04m'
    red = '\033[31m'
    blue = '\033[34m'
    cyan = '\033[36m'
    lightgrey = '\033[37m'
    darkgrey = '\033[90m'
    yellow = '\033[93m'


epilog = f"""
==================================================
GitHub: https://www.github.com/thenurhabib/scancss
Version : {__version__}

"""


def check(getopt):
    payload = int(getopt.payload_level)
    if payload > 6 and getopt.payload is None:
        Log.info("Do you want use custom payload (Y/n)?")
        answer = input("> {W}")
        if answer.lower().strip() == "y":
            Log.info("Write the XSS payload below")
            payload = input("> {W}")
        else:
            payload = core.generate(randint(1, 6))

    else:
        payload = core.generate(payload)

    return payload if getopt.payload is None else getopt.payload


def start():
    parse = argparse.ArgumentParser(formatter_class=argparse.RawTextHelpFormatter,
                                    usage="scancss -u <target> [options]", epilog=epilog, add_help=False)

    pos_opt = parse.add_argument_group("Options")
    pos_opt.add_argument("--help", action="store_true",
                         default=False, help="Show usage and help parameters")
    pos_opt.add_argument(
        "-u", metavar="", help="Target url (e.g. http://example.com)")
    pos_opt.add_argument("--depth", metavar="",
                         help="Depth web page to crawl. Default: 2", default=2)
    pos_opt.add_argument("--payload-level", metavar="",
                         help="Level for payload Generator, 7 for custom payload. {1...6}. Default: 6", default=6)
    pos_opt.add_argument("--payload", metavar="",
                         help="Load custom payload directly (e.g. <script>alert(2005)</script>)", default=None)
    pos_opt.add_argument("--method", metavar="",
                         help="Method setting(s): \n\t0: GET\n\t1: POST\n\t2: GET and POST (default)", default=2, type=int)
    pos_opt.add_argument("--user-agent", metavar="",
                         help="Request user agent (e.g. Chrome/2.1.1/...)", default=agent)
    pos_opt.add_argument("--single", metavar="",
                         help="Single scan. No crawling just one address")
    pos_opt.add_argument("--proxy", default=None, metavar="",
                         help="Set proxy (e.g. {'https':'https://10.10.1.10:1080'})")
    pos_opt.add_argument("--about", action="store_true",
                         help="Print information about scancss tool")
    pos_opt.add_argument(
        "--cookie", help="Set cookie (e.g {'ID':'1094200543'})", default='''{"ID":"1094200543"}''', metavar="")

    getopt = parse.parse_args()
    print(logo)
    Log.info(f"{Style.bold}{Style.blue}--scancss{Style.reset}{Style.cyan}")
    if getopt.u:
        core.main(getopt.u, getopt.proxy, getopt.user_agent,
                  check(getopt), getopt.cookie, getopt.method)

        crawler.crawl(getopt.u, int(getopt.depth), getopt.proxy,
                      getopt.user_agent, check(getopt), getopt.method, getopt.cookie)

    elif getopt.single:
        core.main(getopt.single, getopt.proxy, getopt.user_agent,
                  check(getopt), getopt.cookie, getopt.method)

    elif getopt.about:
        print(f"""
***************
This Tool Made of Educational and legal purpose Only,
Please Don't Use it for Any Bad or Illegal Purpose.
****************
{epilog}""")
    else:
        parse.print_help()


if __name__ == "__main__":
    start()