Skip to content

onticsoluciones/yaes

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

86 Commits

.idea

.idea

 
 

frontend

frontend

 
 

locale/es_ES/LC_MESSAGES

locale/es_ES/LC_MESSAGES

 
 

nmap

nmap

 
 

src

src

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

ajax.php

ajax.php

 
 

composer.json

composer.json

 
 

composer.lock

composer.lock

 
 

yaes.iml

yaes.iml

 
 

yaes.php

yaes.php

 
 

Repository files navigation

yaes

Yet Another Ecommerce Scanner

A CLI and web tool to scan e-commerce sites for known vulnerabilities.

Installation instructions

Required dependencies

php5 interpreter, curl, php5 extension for curl and php5 gd

After cloning the repository, download composer

curl -sS https://getcomposer.org/installer | php

And install the dependencies

php composer.phar install

At that point, the CLI interface is available by running

./yaes.php scan <website>

The web interface resides inside the directory "frontend". Perhaps the easiest way to try it is by using the integrated PHP webserver

php -S localhost:9000 -t .

The web interface should be available at http://localhost:9000/frontend

NMAP

You can run YAES from nmap command line if you prefer:

  • Symbolic link yaes must be create in path first:

ie: ln -s /home/user/bin/yaes /location/of/yaes.php

  • Copy yaes/nmap/http-yaes.nse to /usr/share/nmap/scripts/

  • To run:

nmap --script=http-yaes.nse URL [-p port]

ie: nmap --script=http-yaes.nse demo.opencart.com -p 80

TODO

Check out TODO list and missing features at: https://github.com/onticsoluciones/yaes/issues?q=is%3Aopen+is%3Aissue+label%3Aenhancement

About

Yet Another Ecommerce Scanner

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

1 star

Watchers

5 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages