Tuesday, August 25, 2020

Wonitor - Fast, Zero Config Web Endpoint Change Monitor


fast, zero config web endpoint change monitor. for comparing responses, a selected list of http headers and the full response body is stored on a local key/value store file. no configuration needed.
  • to increase network throughput, a --worker flag allows to set the concurrency when monitoring.
  • endpoints returning a javascript content type will be beautified by default.
  • using --headersOnly when adding a URL allows to only monitor response headers.

installation
Install via go or binary release:
go get -u github.com/rverton/wonitor

usage
λ $ ./wonitor
NAME:
   wonitor - web monitor

USAGE:
   wonitor [global options] command [command options] [arguments...]

COMMANDS:
   add, a      add endpoint to monitor
   delete, d   deletes an endpoint
   get, g      get endpoint body
   list, l     list all monitored endpoints and their body size in bytes
   monitor, m  retrieve all urls and compare them
   help, h     Shows a list of commands or help for one command

GLOBAL OPTIONS:
   --help, -h  show help (default: false)

λ $ ./wonitor add --url https://unlink.io/
+ https://unlink.io/
λ $ ./wonitor monitor --save
[https://unlink.io/] 1576b diff:
--- Original
+++ Current
@@ -1 +1,47 @@
+HTTP/1.1 200 OK
+Content-Type: text/html
+Server: nginx/1.10.3 (Ubuntu)
+X-Frame-Options: DENY

+<h   tml>
+<body>
+<pre>
[... snip ...]
+</pre>
+</body>
+</html>
+

λ $ ./wonitor monitor --save
λ $ # no output because no change detected

endpoint diffing
The following headers are also included in the saved response and monitored for changes:
var headerToInclude = []string{
 "Host",
 "Content-Length",
 "Content-Type",
 "Location",
 "Access-Control-Allow-Origin",
 "Access-Control-Allow-Methods",
 "Access-Control-Expose-Headers",
 "Access-Control-Allow-Credentials",
 "Allow",
 "Content-Security-Policy",
 "Proxy-Authenticate",
 "Server",
 "WWW-Authenticate",
 "X-Frame-Options",
 "X-Powered-By",
}




via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

More articles


  1. Top Pentest Tools
  2. Pentest Tools Bluekeep
  3. New Hack Tools
  4. Pentest Tools Download
  5. Nsa Hack Tools
  6. Hacker Tools
  7. Pentest Tools Online
  8. Hack Rom Tools
  9. Pentest Tools Port Scanner
  10. Hacking Tools For Kali Linux
  11. Hack Tools Online
  12. Hacking Tools For Kali Linux
  13. Usb Pentest Tools
  14. Pentest Tools Windows
  15. Hacking Tools Software
  16. Hack Tools Download
  17. New Hacker Tools
  18. Usb Pentest Tools
  19. Hack Tools For Games
  20. Hacking Tools Mac
  21. Hacker Search Tools
  22. Hacking Tools For Games
  23. Nsa Hack Tools
  24. Hacking Tools Online
  25. Hacking Tools Mac
  26. Black Hat Hacker Tools
  27. How To Hack
  28. Hacker
  29. Hack Tools
  30. Hacking Tools 2019
  31. Install Pentest Tools Ubuntu
  32. Hack App
  33. Nsa Hack Tools Download
  34. Pentest Recon Tools
  35. What Is Hacking Tools
  36. Hacking Tools Kit
  37. Hacking Tools For Pc
  38. Hack Website Online Tool
  39. Physical Pentest Tools
  40. Pentest Tools For Mac
  41. Hack Apps
  42. Hacking Tools For Games
  43. Hack Tools For Pc
  44. Pentest Tools Free
  45. Pentest Automation Tools
  46. Pentest Tools Website Vulnerability
  47. Pentest Tools Github
  48. Pentest Tools Bluekeep
  49. Pentest Tools Review
  50. Hacker Tools List
  51. Best Hacking Tools 2020
  52. Hack Tools Github
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)