PrincessPi/nmaprincesspi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

v0.3-dev

Browse Source
This commit is contained in:
Princess Pi
2025-05-15 18:17:14 -06:00
parent 0edd257a16
commit bdf524f0d0
3 changed files with 16 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files
index.php
+4 -3
View File
@@ -12,10 +12,10 @@ foreach($scans as $scan) {
<link rel="stylesheet" href="css/nmaprincesspi.css"> <link rel="stylesheet" href="css/nmaprincesspi.css">
<script src="js/nmaprincesspi.js"></script> <script src="js/nmaprincesspi.js"></script>
<link rel="icon" type="css/img/" href="css/img/favicon.ico"> <link rel="icon" type="css/img/" href="css/img/favicon.ico">
<title>Princess Pi's Magical Nmap Web Thingy!</title> <title>Princess Pi's Magical Nmap Web Thingy! (nmaprincesspi)</title>
</head> </head>
<body> <body>
<h1>Princess Pi's Magical Nmap Web Thingy!</h1> <h1>Princess Pi's Magical Nmap Web Thingy! (nmapprincesspi)</h1>
<label for="nmapcmd">nmap command</label> <label for="nmapcmd">nmap command</label>
<br> <br>
<input type="text" id="nmapcmd" name="nmapcmd"> <input type="text" id="nmapcmd" name="nmapcmd">
@@ -23,10 +23,11 @@ foreach($scans as $scan) {
<br> <br>
<br> <br>
<span class="fakelink" id="showlist" onclick="toggleShow('scanlist', 'showlist', 'Hide Previous Scans', 'Show Previous Scans')">Show Previous Scans</span> <span class="fakelink" id="showlist" onclick="toggleShow('scanlist', 'showlist', 'Hide Previous Scans', 'Show Previous Scans')">Show Previous Scans</span>
<br> <br><br>
<p class="hidden" id="link"></p> <p class="hidden" id="link"></p>
<div id="scanlist" class="hidden"> <div id="scanlist" class="hidden">
<p><a href="run_clear_scans.php">Delete All Old Scans</a></p> <p><a href="run_clear_scans.php">Delete All Old Scans</a></p>
<p>Progress</p>
<p><?php echo $scanList; ?></p> <p><?php echo $scanList; ?></p>
</div> </div>
<br> <br>
run_scan.php
+6 -3
View File
@@ -1,10 +1,13 @@
<?php <?php
if(empty($_POST['nmapcmd'])) { die("nmapcmd POST var not found"); } if(empty($_POST['nmapcmd'])) { die("nmapcmd POST var not found"); }
if(preg_match('/nmap/i', $_POST['nmapcmd']) !== 1) { $cleannmapcmd = escapeshellcmd($_POST['nmapcmd']);
$post_cmd = $_POST['nmapcmd'];
// if(preg_match('/nmap/i', $cleannmapcmd) !== 1) {
if(substr($cleannmapcmd, 0, 5) == 'nmap ') {
$post_cmd = $cleannmapcmd;
} else { } else {
$post_cmd = substr($_POST['nmapcmd'], 5); $post_cmd = substr($cleannmapcmd, 5);
} }
$file_name = date("Ymd-Hi-s") . "-" . rand(1000000,9999999) . ".xml"; $file_name = date("Ymd-Hi-s") . "-" . rand(1000000,9999999) . ".xml";
todo.txt
+6 -3
View File
@@ -2,21 +2,24 @@ x xhr->run_scan.php
x add random number to file to prevent enumeration x add random number to file to prevent enumeration
x move and edit scripts x move and edit scripts
x status/notify when done x status/notify when done
x polling xml file? x polling xml file?
error handling error handling
nmap fail nmap fail
php script fail php script fail
input validation fail input validation fail
containerize containerize
x scans listing x scans listing
clear scans buttons x clear scans buttons
x work on scans filename? x work on scans filename?
fix perms fix perms
auth system auth system
input/output validation input/output validation
x escapeshellcmd
work on princesspi-nmap.xsl work on princesspi-nmap.xsl
clean up clean up
minimize stuff minimize stuff
remove rundundant code remove rundundant code
make prettier make prettier
green class green class
padding on table items
centering text on table headers