Incorrect configuration allows you to access .env files or reading env variables. LaravelN00b automated scan .env files and checking debug mode in victim host.
Scan rationale
Installation
1 - Install with installer.sh
2 - Install manual
or
Run
Scan rationale
- Scan host.
- Resolve IP adress and check .env file in IP Adress
- Checking debug mode Laravel ( Read .env variables )
Installation
1 - Install with installer.sh
chmod +x installer.sh./installer.sh2 - Install manual
go get github.com/briandowns/spinnergo get github.com/christophwitzko/go-curlgo run main.go --hostname victim.hostor
go build laravelN00b main.goRun
./laravelN00b --hostname victim.host