If you are well versed with tools such as Sandcat, WireShark, Snort and Nmap, you surely must have heard about Lua. Lua is a powerful, fast, lightweight, embeddable scripting language that is heavily used in the game industry and security tools. It combines simple procedural syntax with powerful data description constructs based on associative arrays and extensible semantics. Lua is dynamically typed, runs by interpreting bytecode for a register-based virtual machine, and has automatic memory management with incremental garbage collection, making it ideal for configuration, scripting, and rapid prototyping.
Why are we suddenly discussing about Lua, it is simply because, the authors of Sandcat have given us another tool, err a library that can aid you in writing scripts for performing complex penetration testing tasks. The name is Gelo. Consider it to be an extension of Sandcat. Gelo is a Lua extension library that enables easy and fast development of web security utilities and exploits. It extends Lua with a set of objects and functions derived from the Sandcat tools that allow you to write scripts for performing complex penetration testing tasks.
Build web exploits easily and quickly with Gelo
It also includes a simple tool for converting any Lua/Gelo application to a small executable. In the past, you must have used tools such as AutoIt, batch scripting, etc. to do your bidding. Now, you have Gelo too, with an added advantage that you can use it along with Sandcat.
Gelo extends Lua with:
- HTTP object and functions
- HTTPS Support
- HTML Parser
- String list object and parser
- Base64 encoding/decoding
- URL functions
- URL Encoding/Decoding
- Regular expression and Wildcard matching
- Additional string functions
The download page also has a nice and simple open source example that will demonstrate possible use of Gelo in a web application penetration test.
As of now, it is a beta. At version 1.0, it can be downloaded here.
Searches leading to this post:
Autoit lua,
firefox extension fast developpement,
lua exploits,
lua wordlist generator
Tagged as: Gelo, SandCat
We first wrote about our favourite web scanners, Sandcat in a post here. Now, Sandcat version 4.0 is out for grabs!
“Sandcat combines Syhunt’s state-of-the-art, multi-process scanning technologies with the incredibly fast LUA language to perform remote web application security scans. While spidering a web site and hunting vulnerabilities, Sandcat emulates a modern, HTML 5-aware web browser.”
This is what this update contains:
- Fast and ultra fast scans – Sandcat 4 provides significantly faster scans (500+ requests /sec when running a common web server scan).
- Faster JavaScript execution.
- Browser emulation expanded to five modes: Chrome, Firefox, IE, Opera and Safari. When changing the emulation mode you are changing more than the user agent. We are researching differences between the browsers and replicating them.
- Greatly improved support for large web sites
- CatSense, a new feature that scans and displays in a new way relevant information about each page.
- Improved overall stability when running in both multithreaded and non-multithreaded mode and when scanning JavaScript-enabled sites.
- Lower CPU usage when scanning hosts.
- SandcatCS, a console version of Sandcat 4.0. Allows to control the new features and scan methods
Download Sandcat version 4.0 here.
Tagged as: Database Disclosure, Denial-of-Service, Form Field Manipulation, owasp, SandCat
We first wrote about Sandcat here. It has been one of our favourite web scanners for a long time now. It feels great to have the new and updated Sandcat version 4.0RC1.
“Sandcat combines Syhunt’s state-of-the-art, multi-process scanning technologies with the incredibly fast LUA language to perform remote web application security scans. While spidering a web site and hunting vulnerabilities, Sandcat emulates a modern, HTML 5-aware web browser.”
What is new in this release?
* Fast and ultra fast scans – Sandcat 4 provides significantly faster scans (500+ requests /sec when running a common web server scan).
* Faster JavaScript execution.
* Browser emulation expanded to five modes: Chrome, Firefox, IE, Opera and Safari. When changing the emulation mode you are changing more than the user agent. We are researching differences between the browsers and replicating them.
* Greatly improved support for large web sites.
* CatSense, a new feature that scans and displays in a new way relevant information about each page.
* Improved overall stability when running in both multi-threaded and non-multithreaded mode and when scanning JavaScript-enabled sites.
* Lower CPU usage when scanning hosts.
* SandcatCS, a console version of Sandcat 4.0. Allows to control the new features and scan methods
Download Sandcat version v4.0 RC1 here
Tagged as: Database Disclosure, Denial-of-Service, Form Field Manipulation, owasp, SandCat
