diff options
| -rw-r--r-- | .gitignore | 1 | ||||
| -rw-r--r-- | python-wpwatcher.spec | 303 | ||||
| -rw-r--r-- | sources | 1 |
3 files changed, 305 insertions, 0 deletions
@@ -0,0 +1 @@ +/wpwatcher-3.0.7.tar.gz diff --git a/python-wpwatcher.spec b/python-wpwatcher.spec new file mode 100644 index 0000000..ca7c34f --- /dev/null +++ b/python-wpwatcher.spec @@ -0,0 +1,303 @@ +%global _empty_manifest_terminate_build 0 +Name: python-wpwatcher +Version: 3.0.7 +Release: 1 +Summary: WPWatcher - Automating WPScan to scan and report vulnerable Wordpress sites +License: Apache License 2.0 +URL: https://github.com/tristanlatr/WPWatcher +Source0: https://mirrors.nju.edu.cn/pypi/web/packages/4c/c7/1654616a497acca3ad951d6f26ac3fb44fc5adab162162619d25696b8f8b/wpwatcher-3.0.7.tar.gz +BuildArch: noarch + +Requires: python3-wpscan-out-parse +Requires: python3-filelock +Requires: python3-pytest +Requires: python3-pytest-cov +Requires: python3-codecov +Requires: python3-coverage +Requires: python3-tox +Requires: python3-mypy +Requires: python3-Sphinx +Requires: python3-recommonmark +Requires: python3-rfc5424-logging-handler +Requires: python3-cefevent + +%description + +<h1 align="center"> + <img src="https://wpwatcher.readthedocs.io/en/latest/_static/logo.png" width="250" /> +</h1> + +<p align="center"> + WPWatcher - Automating <a href="https://wpscan.org/" title="homepage" target="_blank">WPScan</a> to scan and report vulnerable Wordpress sites + <br> +</p> + +<p align="center"> + <a href="https://github.com/tristanlatr/WPWatcher/actions" target="_blank"><img src="https://github.com/tristanlatr/WPWatcher/workflows/test/badge.svg"></a> + <a href="https://codecov.io/gh/tristanlatr/WPWatcher" target="_blank"><img src="https://codecov.io/gh/tristanlatr/WPWatcher/branch/master/graph/badge.svg"></a> + <a href="https://pypi.org/project/WPWatcher/" target="_blank"><img src="https://badge.fury.io/py/wpwatcher.svg"></a> + <a href="https://codeclimate.com/github/tristanlatr/WPWatcher" target="_blank"><img src="https://codeclimate.com/github/tristanlatr/WPWatcher/badges/gpa.svg"></a> + <a href="http://mypy-lang.org/" target="_blank"><img src="http://www.mypy-lang.org/static/mypy_badge.svg"></a> + <a href='https://wpwatcher.readthedocs.io/en/latest/'> + <img src='https://readthedocs.org/projects/wpwatcher/badge/?version=latest' alt='Documentation Status' /> + </a> +</p> + +<p align="center"> + Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. + Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found. +</p> + +## Features + + - Scan **multiple sites** with WPScan + - **Parse WPScan output** and divide the results in *"Alerts"*, *"Warnings"* and *"Informations"* + - **Handled VulnDB API limit** + - Define **reporting emails addresses** for every configured site individually and globally + - Define **false positives strings** for every configured site individually and globally + - Define **WPScan arguments** for every configured site individually and globally + - Send WPScan findings to **Syslog** server + - Save raw WPScan output into files + - Log file lists all the findings + - Speed up scans using several asynchronous workers + - **Follow URL redirection** if WPScan fails and propose to ignore main redirect + - Scan sites continuously at defined interval and configure script as a linux service + - Additionnal alerts depending of finding type (SQL dump, etc.) + - Keep track of fixed and unfixed issues + +## Documentation + +[Read The Docs](https://wpwatcher.readthedocs.io/en/latest/). + +## Usage exemple + +Scan two sites, add WPScan arguments, follow URL redirection and email report to recepients. If you reach your API limit, it will wait and continue 24h later. + +```bash +wpwatcher --url exemple.com exemple1.com \ + --wpscan_args "--force --stealthy --api-token <TOKEN>" \ + --follow_redirect --api_limit_wait \ + --send --infos --email_to you@office.ca me@office.ca +``` + +WPWatcher must read a configuration file to send mail reports. This exemple assume you have filled your config file with mail server setings. + +## Emails + +Sample email report. + + + +## Authors +- Florian Roth (Original author of [WPWatcher v0.2](https://github.com/Neo23x0/WPWatcher)) +- Tristan Landes + +## Disclamer + +Use at your own risks. + + +%package -n python3-wpwatcher +Summary: WPWatcher - Automating WPScan to scan and report vulnerable Wordpress sites +Provides: python-wpwatcher +BuildRequires: python3-devel +BuildRequires: python3-setuptools +BuildRequires: python3-pip +%description -n python3-wpwatcher + +<h1 align="center"> + <img src="https://wpwatcher.readthedocs.io/en/latest/_static/logo.png" width="250" /> +</h1> + +<p align="center"> + WPWatcher - Automating <a href="https://wpscan.org/" title="homepage" target="_blank">WPScan</a> to scan and report vulnerable Wordpress sites + <br> +</p> + +<p align="center"> + <a href="https://github.com/tristanlatr/WPWatcher/actions" target="_blank"><img src="https://github.com/tristanlatr/WPWatcher/workflows/test/badge.svg"></a> + <a href="https://codecov.io/gh/tristanlatr/WPWatcher" target="_blank"><img src="https://codecov.io/gh/tristanlatr/WPWatcher/branch/master/graph/badge.svg"></a> + <a href="https://pypi.org/project/WPWatcher/" target="_blank"><img src="https://badge.fury.io/py/wpwatcher.svg"></a> + <a href="https://codeclimate.com/github/tristanlatr/WPWatcher" target="_blank"><img src="https://codeclimate.com/github/tristanlatr/WPWatcher/badges/gpa.svg"></a> + <a href="http://mypy-lang.org/" target="_blank"><img src="http://www.mypy-lang.org/static/mypy_badge.svg"></a> + <a href='https://wpwatcher.readthedocs.io/en/latest/'> + <img src='https://readthedocs.org/projects/wpwatcher/badge/?version=latest' alt='Documentation Status' /> + </a> +</p> + +<p align="center"> + Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. + Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found. +</p> + +## Features + + - Scan **multiple sites** with WPScan + - **Parse WPScan output** and divide the results in *"Alerts"*, *"Warnings"* and *"Informations"* + - **Handled VulnDB API limit** + - Define **reporting emails addresses** for every configured site individually and globally + - Define **false positives strings** for every configured site individually and globally + - Define **WPScan arguments** for every configured site individually and globally + - Send WPScan findings to **Syslog** server + - Save raw WPScan output into files + - Log file lists all the findings + - Speed up scans using several asynchronous workers + - **Follow URL redirection** if WPScan fails and propose to ignore main redirect + - Scan sites continuously at defined interval and configure script as a linux service + - Additionnal alerts depending of finding type (SQL dump, etc.) + - Keep track of fixed and unfixed issues + +## Documentation + +[Read The Docs](https://wpwatcher.readthedocs.io/en/latest/). + +## Usage exemple + +Scan two sites, add WPScan arguments, follow URL redirection and email report to recepients. If you reach your API limit, it will wait and continue 24h later. + +```bash +wpwatcher --url exemple.com exemple1.com \ + --wpscan_args "--force --stealthy --api-token <TOKEN>" \ + --follow_redirect --api_limit_wait \ + --send --infos --email_to you@office.ca me@office.ca +``` + +WPWatcher must read a configuration file to send mail reports. This exemple assume you have filled your config file with mail server setings. + +## Emails + +Sample email report. + + + +## Authors +- Florian Roth (Original author of [WPWatcher v0.2](https://github.com/Neo23x0/WPWatcher)) +- Tristan Landes + +## Disclamer + +Use at your own risks. + + +%package help +Summary: Development documents and examples for wpwatcher +Provides: python3-wpwatcher-doc +%description help + +<h1 align="center"> + <img src="https://wpwatcher.readthedocs.io/en/latest/_static/logo.png" width="250" /> +</h1> + +<p align="center"> + WPWatcher - Automating <a href="https://wpscan.org/" title="homepage" target="_blank">WPScan</a> to scan and report vulnerable Wordpress sites + <br> +</p> + +<p align="center"> + <a href="https://github.com/tristanlatr/WPWatcher/actions" target="_blank"><img src="https://github.com/tristanlatr/WPWatcher/workflows/test/badge.svg"></a> + <a href="https://codecov.io/gh/tristanlatr/WPWatcher" target="_blank"><img src="https://codecov.io/gh/tristanlatr/WPWatcher/branch/master/graph/badge.svg"></a> + <a href="https://pypi.org/project/WPWatcher/" target="_blank"><img src="https://badge.fury.io/py/wpwatcher.svg"></a> + <a href="https://codeclimate.com/github/tristanlatr/WPWatcher" target="_blank"><img src="https://codeclimate.com/github/tristanlatr/WPWatcher/badges/gpa.svg"></a> + <a href="http://mypy-lang.org/" target="_blank"><img src="http://www.mypy-lang.org/static/mypy_badge.svg"></a> + <a href='https://wpwatcher.readthedocs.io/en/latest/'> + <img src='https://readthedocs.org/projects/wpwatcher/badge/?version=latest' alt='Documentation Status' /> + </a> +</p> + +<p align="center"> + Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. + Schedule scans and get notified when vulnerabilities, outdated plugins and other risks are found. +</p> + +## Features + + - Scan **multiple sites** with WPScan + - **Parse WPScan output** and divide the results in *"Alerts"*, *"Warnings"* and *"Informations"* + - **Handled VulnDB API limit** + - Define **reporting emails addresses** for every configured site individually and globally + - Define **false positives strings** for every configured site individually and globally + - Define **WPScan arguments** for every configured site individually and globally + - Send WPScan findings to **Syslog** server + - Save raw WPScan output into files + - Log file lists all the findings + - Speed up scans using several asynchronous workers + - **Follow URL redirection** if WPScan fails and propose to ignore main redirect + - Scan sites continuously at defined interval and configure script as a linux service + - Additionnal alerts depending of finding type (SQL dump, etc.) + - Keep track of fixed and unfixed issues + +## Documentation + +[Read The Docs](https://wpwatcher.readthedocs.io/en/latest/). + +## Usage exemple + +Scan two sites, add WPScan arguments, follow URL redirection and email report to recepients. If you reach your API limit, it will wait and continue 24h later. + +```bash +wpwatcher --url exemple.com exemple1.com \ + --wpscan_args "--force --stealthy --api-token <TOKEN>" \ + --follow_redirect --api_limit_wait \ + --send --infos --email_to you@office.ca me@office.ca +``` + +WPWatcher must read a configuration file to send mail reports. This exemple assume you have filled your config file with mail server setings. + +## Emails + +Sample email report. + + + +## Authors +- Florian Roth (Original author of [WPWatcher v0.2](https://github.com/Neo23x0/WPWatcher)) +- Tristan Landes + +## Disclamer + +Use at your own risks. + + +%prep +%autosetup -n wpwatcher-3.0.7 + +%build +%py3_build + +%install +%py3_install +install -d -m755 %{buildroot}/%{_pkgdocdir} +if [ -d doc ]; then cp -arf doc %{buildroot}/%{_pkgdocdir}; fi +if [ -d docs ]; then cp -arf docs %{buildroot}/%{_pkgdocdir}; fi +if [ -d example ]; then cp -arf example %{buildroot}/%{_pkgdocdir}; fi +if [ -d examples ]; then cp -arf examples %{buildroot}/%{_pkgdocdir}; fi +pushd %{buildroot} +if [ -d usr/lib ]; then + find usr/lib -type f -printf "/%h/%f\n" >> filelist.lst +fi +if [ -d usr/lib64 ]; then + find usr/lib64 -type f -printf "/%h/%f\n" >> filelist.lst +fi +if [ -d usr/bin ]; then + find usr/bin -type f -printf "/%h/%f\n" >> filelist.lst +fi +if [ -d usr/sbin ]; then + find usr/sbin -type f -printf "/%h/%f\n" >> filelist.lst +fi +touch doclist.lst +if [ -d usr/share/man ]; then + find usr/share/man -type f -printf "/%h/%f.gz\n" >> doclist.lst +fi +popd +mv %{buildroot}/filelist.lst . +mv %{buildroot}/doclist.lst . + +%files -n python3-wpwatcher -f filelist.lst +%dir %{python3_sitelib}/* + +%files help -f doclist.lst +%{_docdir}/* + +%changelog +* Mon May 29 2023 Python_Bot <Python_Bot@openeuler.org> - 3.0.7-1 +- Package Spec generated @@ -0,0 +1 @@ +da537242170dc02b9072c736be5cdbf8 wpwatcher-3.0.7.tar.gz |