j0lly/arvest_proxy.bash

## arvest_proxy.bash
#!/bin/bash
# ¡ BSD !
#
# J0lly 2014-08-22
# command: ./arvest_proxy.bash 4.50 host@example.com &
# it takes the network part of a /16 network \
# scan the net for open 8080 proxy \
# test it with nc and send ip list via mail to the recipient


#eQ nohup
trap "" 1

## find pseudo open proxy on port 8080 and log to xml format
time nmap --script http-open-proxy.nse  -Pn -P0 -n --unprivileged  -T4 $1.0.0/16  -p 8080 -oX ${1}.0.0 > /dev/null

sleep 5

LIST=$(date +%y%m%d%H%M%S)

## grep good ip and test them against googl.com in order to find real open proxy and put in list_$LIST
for i in $( tac ${1}.0.0 | grep -A4 might | grep -oE "${1}.[0-9]{3}.[0-9]{3}" )
	do
		echo -e "GET http://google.com HTTP/1.0\n\host: google.com\n" | nc $i 8080 | grep 'Location: http://www.google.' > /dev/null && echo $i >> list_$LIST
done


(echo "scan ${1}.0.0 ended" ; uuencode list_$LIST list_$LIST.txt)  | /usr/bin/mailx -s "nmap scan" ${2}
	#!/bin/bash
	# ¡ BSD !
	#
	# J0lly 2014-08-22
	# command: ./arvest_proxy.bash 4.50 host@example.com &
	# it takes the network part of a /16 network \
	# scan the net for open 8080 proxy \
	# test it with nc and send ip list via mail to the recipient


	#eQ nohup
	trap "" 1

	## find pseudo open proxy on port 8080 and log to xml format
	time nmap --script http-open-proxy.nse -Pn -P0 -n --unprivileged -T4 $1.0.0/16 -p 8080 -oX ${1}.0.0 > /dev/null

	sleep 5

	LIST=$(date +%y%m%d%H%M%S)

	## grep good ip and test them against googl.com in order to find real open proxy and put in list_$LIST
	for i in $( tac ${1}.0.0 \| grep -A4 might \| grep -oE "${1}.[0-9]{3}.[0-9]{3}" )
	do
	echo -e "GET http://google.com HTTP/1.0\n\host: google.com\n" \| nc $i 8080 \| grep 'Location: http://www.google.' > /dev/null && echo $i >> list_$LIST
	done


	(echo "scan ${1}.0.0 ended" ; uuencode list_$LIST list_$LIST.txt) \| /usr/bin/mailx -s "nmap scan" ${2}