0xded093/sp-api_browser_v3.py

## sp-api_browser_v3.py
#!/usr/bin/python
# -*- coding: iso-8859-15 -*-
import requests
from requests_ntlm import HttpNtlmAuth
from requests.auth import HTTPBasicAuth
import argparse
import curses
from pick import pick
import time
import getpass

BASE_URL = "/_api/"

parser = argparse.ArgumentParser(description='Microsoft Sharepoint API Browser')
parser.add_argument('-t','--target', help='Set the target', required=True)
parser.add_argument('-u','--user', help='NTLM user', required=True)
parser.add_argument('-p','--password', help='NTLM password', required=True)
parser.add_argument('-b','--brute', help='brute login id', required=False)
args = vars(parser.parse_args())

target = args['target']
user = args['user']
password = args['password']

def getter(target ,url):
	r = requests.get(target+BASE_URL+url, auth=HttpNtlmAuth(user,password))
	return r.text

def picker(response):
	import xml.dom.minidom
	options = []
	xml = xml.dom.minidom.parseString(response)
	try:
		for node in xml.getElementsByTagName('link'):
			api_ends = node.getAttribute('href')
			options.append(api_ends)
	except Exception, e:
		raise e
	try:
		option, index = pick(options, "Abusing APIs of "+target+":", indicator='=>')
		picker(getter(target, option))
	except:
		print xml.toprettyxml()

print "###########################################################################"
print "  _____ _____             _____ _____            _                         "
print " / ____|  __ \      /\   |  __ \_   _|     /\   | |                        "
print "| (___ | |__) |    /  \  | |__) || |      /  \  | |__  _   _ ___  ___ _ __ "
print " \___ \|  ___/    / /\ \ |  ___/ | |     / /\ \ | '_ \| | | / __|/ _ \ '__|"
print " ____) | |       / ____ \| |    _| |_   / ____ \| |_) | |_| \__ \  __/ |   "
print "|_____/|_|      /_/    \_\_|   |_____| /_/    \_\_.__/ \__,_|___/\___|_|   "
print "###########################################################################"
print "[+] Launching SP API Abuser on: "+target
print "Press Ctrl-C to view current raw XML"
print "---------------------------------------------------------------------------"

time.sleep(2)
picker(getter(target, "Web"))
	#!/usr/bin/python
	# -- coding: iso-8859-15 --
	import requests
	from requests_ntlm import HttpNtlmAuth
	from requests.auth import HTTPBasicAuth
	import argparse
	import curses
	from pick import pick
	import time
	import getpass

	BASE_URL = "/_api/"

	parser = argparse.ArgumentParser(description='Microsoft Sharepoint API Browser')
	parser.add_argument('-t','--target', help='Set the target', required=True)
	parser.add_argument('-u','--user', help='NTLM user', required=True)
	parser.add_argument('-p','--password', help='NTLM password', required=True)
	parser.add_argument('-b','--brute', help='brute login id', required=False)
	args = vars(parser.parse_args())

	target = args['target']
	user = args['user']
	password = args['password']

	def getter(target ,url):
	r = requests.get(target+BASE_URL+url, auth=HttpNtlmAuth(user,password))
	return r.text

	def picker(response):
	import xml.dom.minidom
	options = []
	xml = xml.dom.minidom.parseString(response)
	try:
	for node in xml.getElementsByTagName('link'):
	api_ends = node.getAttribute('href')
	options.append(api_ends)
	except Exception, e:
	raise e
	try:
	option, index = pick(options, "Abusing APIs of "+target+":", indicator='=>')
	picker(getter(target, option))
	except:
	print xml.toprettyxml()

	print "###########################################################################"
	print " _____ _____ _____ _____ _ "
	print " / ____\| __ \ /\ \| __ \_ _\| /\ \| \| "
	print "\| (___ \| \|__) \| / \ \| \|__) \|\| \| / \ \| \|__ _ _ ___ ___ _ __ "
	print " \___ \\| ___/ / /\ \ \| ___/ \| \| / /\ \ \| '_ \\| \| \| / __\|/ _ \ '__\|"
	print " ____) \| \| / ____ \\| \| _\| \|_ / ____ \\| \|_) \| \|_\| \__ \ __/ \| "
	print "\|_____/\|_\| /_/ \_\_\| \|_____\| /_/ \_\_.__/ \__,_\|___/\___\|_\| "
	print "###########################################################################"
	print "[+] Launching SP API Abuser on: "+target
	print "Press Ctrl-C to view current raw XML"
	print "---------------------------------------------------------------------------"

	time.sleep(2)
	picker(getter(target, "Web"))