Skip to content

Instantly share code, notes, and snippets.

@ethicalhack3r
Created December 12, 2016 11:09
Show Gist options
  • Save ethicalhack3r/9cc15b914a2866c29db1415730fa910b to your computer and use it in GitHub Desktop.
Save ethicalhack3r/9cc15b914a2866c29db1415730fa910b to your computer and use it in GitHub Desktop.
Finds the remote version of magento
#!/usr/bin/env ruby
require 'typhoeus'
require 'json'
require 'uri'
require 'digest/md5'
# https://raw.githubusercontent.com/gwillem/magento-version-identification/master/version_hashes.json
target = ARGV[0]
hashes = JSON.parse(File.open('version_hashes.json').read)
hydra = Typhoeus::Hydra.hydra
hashes.each do |hash|
file = hash[0]
url = URI.join(target, file).to_s
request = Typhoeus::Request.new(url, followlocation: true)
hashes = hash[1].keys
hydra.queue(request)
request.on_complete do |response|
if response.success?
response_hash = Digest::MD5.hexdigest(response.body)
if hash[1].keys.include? response_hash
puts "[+] Magento version detected as #{hash[1][response_hash]} from #{url} using hash #{response_hash}"
end
elsif response.timed_out?
# aw hell no
elsif response.code == 0
# Could not get an http response, something's wrong.
else
# Received a non-successful http response.
end
end
end
hydra.run
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment