YasserGersy · September 16, 2017 23:34
diff --git a/x-amz-meta-s3cmd-attrs.py b/x-amz-meta-s3cmd-attrs.py
 import requests,sys

 requests.packages.urllib3.disable_warnings()
 if len(sys.argv)<2:
 	path='final.txt'
 else:
 	path=sys.argv[1]
 	
 vulnerable=[]

 data=open(path,'r').readlines()

 print '\n------------------------------------------------------------\n'
 print len(data)


 print '\n------------------------------------------------------------\n'



 def check(d):
 	d=d.strip()
 	if d.startswith('http') is False:
 		d='http://'+d
 	r=requests.get(url=d,allow_redirects=True,verify=False)
 	try:
 		amz_h=r.headers['x-amz-meta-s3cmd-attrs']
 	except Exception:
 		amz_h=''

 	if len(amz_h)>3:
 		vulnerable.append(amz_h)
 		open('vulnerable.txt','w').writelines(vulnerable)
 		print '---------------------------------------\n'+d+':'+amz_h+'\n----------------------------------\n'
 

 #exit(0)
 for d in data:
 	print d,
 	if ' ' in d:
 		continue
 	try:
 		check(d)
 	except Exception:
 		#print 'Failed '
 		print ''
	import requests,sys

	requests.packages.urllib3.disable_warnings()
	if len(sys.argv)<2:
	path='final.txt'
	else:
	path=sys.argv[1]

	vulnerable=[]

	data=open(path,'r').readlines()

	print '\n------------------------------------------------------------\n'
	print len(data)


	print '\n------------------------------------------------------------\n'



	def check(d):
	d=d.strip()
	if d.startswith('http') is False:
	d='http://'+d
	r=requests.get(url=d,allow_redirects=True,verify=False)
	try:
	amz_h=r.headers['x-amz-meta-s3cmd-attrs']
	except Exception:
	amz_h=''

	if len(amz_h)>3:
	vulnerable.append(amz_h)
	open('vulnerable.txt','w').writelines(vulnerable)
	print '---------------------------------------\n'+d+':'+amz_h+'\n----------------------------------\n'


	#exit(0)
	for d in data:
	print d,
	if ' ' in d:
	continue
	try:
	check(d)
	except Exception:
	#print 'Failed '
	print ''