Skip to content

Adds Dockerfile and README instructions #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
lodi-g wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Adds Dockerfile and README instructions #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 24 additions & 8 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,25 +2,35 @@

`EOS` loots information from a Symfony target in debug mode:

| Section | Description |
| --- | --- |
| General | Get general information about the target. |
| Phpinfo | Extract Symfony environment variables from the exposed phpinfo(). |
| Routes | Get the list of registered routes. |
| Request logs | Look for credentials in POST request logs. |
| Section | Description |
| ------------- | --------------------------------------------------------------------------- |
| General | Get general information about the target. |
| Phpinfo | Extract Symfony environment variables from the exposed phpinfo(). |
| Routes | Get the list of registered routes. |
| Request logs | Look for credentials in POST request logs. |
| Project files | Retrieve project files (configuration, database, etc.) based on a wordlist. |
| Sources | Extract the application source code. |
| Cookies | Craft Remember Me cookies. |
| Sources | Extract the application source code. |
| Cookies | Craft Remember Me cookies. |

More info at https://www.synacktiv.com/posts/pentest/looting-symfony-with-eos.html.

## Installation

### Standard

```bash
$ git clone https://github.com/Synacktiv/eos
$ python3 -m pip install --user ./eos
```

### Docker

```bash
$ git clone https://github.com/Synacktiv/eos
$ cd eos
$ docker build . -f eos.Dockerfile -t eos
```

## Usage

```bash
Expand Down Expand Up @@ -204,3 +214,9 @@ $ eos scan http://localhost --output results
[+] Generated tokens: 5894a5 f68efa
[+] Scan completed in 0:00:13
```

### Example usage with Docker

```bash
$ docker run --rm -v /tmp/eos:/tmp/res eos eos scan http://localhost/ --output /tmp/res
```
17 changes: 17 additions & 0 deletions eos.Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
FROM python:3-alpine

WORKDIR /eos

RUN apk add --no-cache --virtual .build-deps gcc musl-dev
RUN apk add --no-cache libxslt-dev

COPY requirements.txt /eos
RUN python3 -m pip install -r requirements.txt

RUN apk del .build-deps

COPY . ./
RUN python3 -m pip install /eos/


CMD "eos"