If you happen to come across a URL that looks something like this:
settings/preferences?

Immediately stop running whitewidow, go into tmp/SQL_sites_to_check.tx and manually remove this URL. It will cause the biggest freaking headache you can ever imagine. I am currently trying to fix this issue, however, there are multiple different types of these. When you come across it please post which search query, and what the extension of the settings/preferences is. Example:
settings/preferences?id=

$ruby whitewidos -d
.........
[06:56:53 WARNING]URL: http://code.metager.de/source/xref/moodle/lib/classes/session/file.php; is not vulnerable, dumped to non_exploitable.txt
[06:56:54 INFO]Parsing page for SQL syntax error: /settings/ads/preferences?hl=ru'
/usr/lib/ruby/2.2.0/net/http.rb:1532:in addr_port': undefined method+' for nil:NilClass (NoMethodError)
from /usr/lib/ruby/2.2.0/net/http.rb:1465:in begin_transport' from /usr/lib/ruby/2.2.0/net/http.rb:1410:intransport_request'
from /usr/lib/ruby/2.2.0/net/http.rb:1384:in request' from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient/request.rb:270:innet_http_do_request'
from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient/request.rb:418:in block in transmit' from /usr/lib/ruby/2.2.0/net/http.rb:853:instart'
from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in transmit' from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:inexecute'
from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in execute' from /var/lib/gems/2.2.0/gems/rest-client-1.8.0/lib/restclient.rb:65:inget'
from whitewidow.rb:133:in page' from whitewidow.rb:137:inparse'
from whitewidow.rb:208:in block (2 levels) in vulnerability_check' from /usr/lib/ruby/2.2.0/timeout.rb:88:inblock in timeout'
from /usr/lib/ruby/2.2.0/timeout.rb:32:in block in catch' from /usr/lib/ruby/2.2.0/timeout.rb:32:incatch'
from /usr/lib/ruby/2.2.0/timeout.rb:32:in catch' from /usr/lib/ruby/2.2.0/timeout.rb:103:intimeout'
from whitewidow.rb:206:in block in vulnerability_check' from whitewidow.rb:203:ineach_line'
from whitewidow.rb:203:in vulnerability_check' from whitewidow.rb:241:in

Lets say I want only com, co.uk, .ng, etc... it would be cool to have a parameter for that

Using latest version from git:

/home/unshadow/Desktop/git-projects/whitewidow/lib/copy.rb:2:in `file': wrong number of arguments (given 0, expected 2) (ArgumentError)
    from whitewidow.rb:483:in `<main>'

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create, if there is an issue that relates to this, please add a comment to that one and describe your specific problem

Issues can be found here

Issue (be specific)

An invalid byte sequence exception is thrown when running the program

Exact error message

whitewidow.rb:141:in `[]': invalid byte sequence in UTF-8 (ArgumentError)
        from whitewidow.rb:141:in `block (2 levels) in vulnerability_check'
        from C:/Ruby23/lib/ruby/2.3.0/timeout.rb:91:in `block in timeout'
        from C:/Ruby23/lib/ruby/2.3.0/timeout.rb:33:in `block in catch'
        from C:/Ruby23/lib/ruby/2.3.0/timeout.rb:33:in `catch'
        from C:/Ruby23/lib/ruby/2.3.0/timeout.rb:33:in `catch'
        from C:/Ruby23/lib/ruby/2.3.0/timeout.rb:106:in `timeout'
        from whitewidow.rb:138:in `block in vulnerability_check'
        from whitewidow.rb:135:in `each_line'
        from whitewidow.rb:135:in `vulnerability_check'
        from whitewidow.rb:177:in `<main>'

Steps to reproduce

Run whitewidow.rb -d with specified search query

Search query if applicable

books.php?id=
book.php?isbn

Whitewidow version number

1.1.0

Ruby version number

ruby 2.3.1p112 (2016-04-26 revision 54768) [i386-mingw32]

Labels

• Bug
• Enhancement
• Question

TEMP FIX

Remove search queries from lib/lists/search_queries.txt

I saw that the actual User-Agents are kinda old, like Firefox 15, 10 and so on (we are actually at 50!)
I found an nice site which logs User-Agents activities so we can pick out the new Useragents.

http://www.coolboys.jp/ranking/access.cgi?user
It's logging the Data counted by how much ppl accessed it with the Browser for example for Linux Devices:

http://www.coolboys.jp/ranking/access.cgi?user+UNIX+Linux+OS
Mozilla/5.0 (Linux; Android 6.0.1; SC-02H Build/MMB29M) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/4.0 Chrome/44.0.2403.133 Mobile Safari/537.36
Mozilla/5.0 (Linux; U; Android 4.2.2; ja-jp; KYY22 Build/104.0.1100) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30

Surely you can also sort for Browsers like Firefox: http://www.coolboys.jp/ranking/access.cgi?user+Mozilla%20Firefox++Browser

Mozilla/5.0 (Windows NT 6.1; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0
Mozilla/5.0 (Windows NT 10.0; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0

Since i dont know how to edit stuff in Github - maybe someone can add some User Agents for future versions to the rand-age.yml?

Labels

• Bug
• Enhancement
• Question
• Email request

Issue (be specific)

Running ruby whitewidow.rb -d results in a bunch of syntax errors. I have never touched ruby before but it looks to me like an incorrectly formatted string.

Exact error message

$ ruby whitewidow.rb -d --dry-run
whitewidow.rb:66: syntax error, unexpected tIDENTIFIER, expecting keyword_do or '{' or '('
...      Hey now my friend, I know you're eager, I am also, but...
...                               ^
whitewidow.rb:67: syntax error, unexpected tIDENTIFIER, expecting keyword_end
      either doesn't exist, or it's not in the di...
                    ^
whitewidow.rb:67: syntax error, unexpected keyword_or
      either doesn't exist, or it's not in the directory yo...
                              ^
whitewidow.rb:67: syntax error, unexpected tIDENTIFIER, expecting keyword_end
...t in the directory you say it's in..
...                               ^
whitewidow.rb:72: syntax error, unexpected tIDENTIFIER, expecting keyword_end
      Don't worry I'll wait!
           ^
whitewidow.rb:90: syntax error, unexpected tIDENTIFIER, expecting keyword_end
  FORMAT.info("I'm searching for possible SQL v...
                  ^
whitewidow.rb:90: syntax error, unexpected tCONSTANT, expecting keyword_do or '{' or '('
..."I'm searching for possible SQL vulnerable sites, using sear...
...                               ^
whitewidow.rb:90: syntax error, unexpected tIDENTIFIER, expecting keyword_do or '{' or '('
... vulnerable sites, using search query #{query.chomp}")
...                               ^
whitewidow.rb:104: syntax error, unexpected keyword_do_block, expecting keyword_end
  url.links.each do |link|

Steps to reproduce

1. Clone the respository
2. cd whitewidow
3. sudo bundle install
4. ruby whitewidow.rb -d

Whitewidow version number

c1247be

Ruby version number

2.2.5p319

Labels

• Bug
• Enhancement
• Question

Issue (be specific)

Need testers for the pre-release of version 1.5.0. This version includes a recursive spider bot that will extract a bunch of links. I need people to play around with it. Find out what they want added, find out what errors they receive, and let me know what needs to be done with it. I don't have time right now to really test it and figure out the features for it, so I'm looking for the help of the whitewidow community. You guys are awesome and are who make me want this project to continue. Looking forward to your responses.

Steps to reproduce

run ruby whitewidow.rb -s "<YOUR-URL>"

Whitewidow version number

PRV1.5.0 (pre-release)

Labels

• Bug
• Enhancement
• Question

Issue (be specific)

Google's webcache sometimes shows up on whitewidows scrapped sites list

Exact error message

Depending on what happens there's a few, Whitewidow will completely exit the program, take it as a non exploitable, or crash with a parse error

Steps to reproduce

Run whitewidow in default mode

Search query if applicable

Any

Whitewidow version number

1.6.0.3

Ruby version number

ruby 2.3.1p112 (2016-04-26 revision 54768) [i386-mingw32]

When you run whitewidow in default mode sometimes you'll get Google's webcache, this will either do one of two things, cause the program to crash completely, or skip it as a none exploitable. I would like help in creative ways to get rid of Googles webcache, thanks guys,

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement (be specific)

Catch the syntax error and specify what version of ruby needs to be run

Exact error message (if enhancement what will this effect and why should it be added?)

ruby 2.0.0p648 (2015-12-16 revision 53162) [x86_64-linux]
root@station1:/tools/sql/whitewidow# ruby whitewidow.rb
whitewidow.rb:61: syntax error, unexpected tIDENTIFIER, expecting keyword_do or '{' or '('
... Hey now my friend, I know you're eager, I am also, but...
... ^
whitewidow.rb:62: syntax error, unexpected tIDENTIFIER, expecting keyword_end
either doesn't exist, or it's not in the di...
^
whitewidow.rb:62: syntax error, unexpected keyword_or
either doesn't exist, or it's not in the directory yo...
^
whitewidow.rb:62: syntax error, unexpected tIDENTIFIER, expecting keyword_end
...t in the directory you say it's in..
... ^
whitewidow.rb:67: syntax error, unexpected tIDENTIFIER, expecting keyword_end
Don't worry I'll wait!
^
whitewidow.rb:69: syntax error, unexpected tIDENTIFIER, expecting keyword_end
.yellow.bold # Error out because the file doesn't exist

Steps to reproduce if applicable or steps on what should be done

Run whitewidow with a ruby version less than 2.3.0

Search query if applicable (please use exact search query)

N/A

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

1.8.1.3

Ruby version number

Anything other than 2.3.0

Labels

• Bug
• Encoding
• User agent
• Enhancement
• Question
• Email request

I need people to test the new sqlmap configuration and check for issues with it. I'm not 100% sure if it will extract Python 3.x.x or not, but it should. So find the problems and let me know. Thanks guys.

Issue:

New installs of Arch Linux uses python 3.5 as the default. (and is my preference)

Since sqlmap requires python 2.7 (2.6), a quick edit of the "whitewidow.rb" file is needed to get things working properly for those running a newer version of python as their default.

Dirty Solution:

Line 128-ish
system("python #{SQLMAP_PATH} -m #{SQL_VULN_SITES_LOG} #{commands}")
needs to be changed to ->
system("python2.7 #{SQLMAP_PATH} -m #{SQL_VULN_SITES_LOG} #{commands}")

I'm sure this could also be accomplished by setting the python virtualenv to 2.7, but that seems like overkill in this case.

Whitewidow version number: 1.9.7.15

Ruby version number: n/a

Labels

• Bug
• Encoding
• User agent
• Enhancement (more of an FYI in case others need it)
• Question
• Email request

Before you create an issue please make sure that there are no issues that relate to your issue.

if there is an issue that relates to one, please add a comment to that issue and describe your specific problem.

If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs
directory. If none of those answer your question, make an issue

Issue/Enhancement (be specific)

Test issue

Exact error message (if enhancement what will this effect and why should it be added?)

Test issue

Steps to reproduce if applicable or steps on what should be done

Test issue

Search query if applicable (please use exact search query)

Test issue

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

Test issue

Ruby version number

Test issue

Labels

• Bug
• Encoding
• Enhancement
• Question
• Email request

Looking for some ideas on new payloads and ways to implement custom payloads, if you have any ideas, or suggestions post them here

Hola! @Ekultek has created a ZenHub account for the Ekultek organization. ZenHub is the only project management tool integrated natively in GitHub – created specifically for fast-moving, software-driven teams.

How do I use ZenHub?

To get set up with ZenHub, all you have to do is download the browser extension and log in with your GitHub account. Once you do, you’ll get access to ZenHub’s complete feature-set immediately.

What can ZenHub do?

ZenHub adds a series of enhancements directly inside the GitHub UI:

• Real-time, customizable task boards for GitHub issues;
• Multi-Repository burndown charts, estimates, and velocity tracking based on GitHub Milestones;
• Personal to-do lists and task prioritization;
• Time-saving shortcuts – like a quick repo switcher, a “Move issue” button, and much more.

Add ZenHub to GitHub

Still curious? See more ZenHub features or read user reviews. This issue was written by your friendly ZenHub bot, posted by request from @Ekultek.

Issue/Enhancement/Question (be specific)

Getting error: uninitialized constant SEARCH_QUERY

Exact error message/Enhancement information

uninitialized constant SEARCH_QUERY

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true}

Search query if applicable (please use exact search query)

inurl:/sourcesinurl:/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]= Aardvark TopSites

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

1.9.14.27

Ruby version number (run ruby --version)

2.3.1

Error log information

2017-04-07
["/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:323:in fetch'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:993:in response_redirect'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:315:in fetch'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:464:in get'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:586:in submit'", "/home/ekultek/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:41:in get_urls'", "whitewidow.rb:64:in `'"]

2017-04-07

["whitewidow.rb:66:in <main>'"] ["whitewidow.rb:66:in '"]

2017-04-07
["/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:323:in fetch'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:993:in response_redirect'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:315:in fetch'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:464:in get'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:586:in submit'", "/home/ekultek/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:41:in get_urls'", "whitewidow.rb:64:in `'"]

2017-04-07

["whitewidow.rb:66:in <main>'"] ["whitewidow.rb:66:in '"]

It would be awesome to have a Gemfile for dependencies.

[22:23:17 ERROR] Failed with error code U+1EDB from UTF-8 to ISO-8859-1
[22:23:17 FATAL] Program failed with error code: U+1EDB from UTF-8 to ISO-8859-1, error saved to error_log.txt
[22:23:17 FATAL] Issue template is being generated for this error, create a new issue named: IoPIg56 U+1EDB from UTF-8 to ISO-8859-1

##error_log
["/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/util.rb:77:in encode'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/util.rb:77:in from_native_charset'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:243:in from_native_charset'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:237:in block in proc_query'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:236:in map'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:236:in proc_query'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:299:in block in build_query'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:298:in each'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:298:in build_query'", "/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:587:in submit'", "/home/kenny/Desktop/Scanning/SQL/whitewidow/lib/whitewidow/scanner.rb:41:in get_urls'", "whitewidow.rb:64:in

##issue

--

Issue/Enhancement/Question (be specific)

Getting error: U+1EDB from UTF-8 to ISO-8859-1

Exact error message/Enhancement information

U+1EDB from UTF-8 to ISO-8859-1

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true}

Search query if applicable (please use exact search query)

inurl:/index2.php?page=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

1.9.11.24

Ruby version number (run ruby --version)

2.3.3

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement/Question (be specific)

Getting error: undefined method `q=' for nil:NilClass

Exact error message/Enhancement information

undefined method `q=' for nil:NilClass

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true, :agent=>true}

Search query if applicable (please use exact search query)

default.php?itemnav=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

2.0

Ruby version number (run ruby --version)

2.4.0

Error log information

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03
[]

2017-05-03
["/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:323:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:993:in response_redirect'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:315:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:464:in get'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:586:in submit'", "/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:44:in get_urls'", "whitewidow.rb:64:in `'"]

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03

["whitewidow.rb:66:in <main>'"] ["whitewidow.rb:66:in '"]

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

Issue/Enhancement/Question (be specific)

Getting error: U+1EDB from UTF-8 to ISO-8859-1

Exact error message/Enhancement information

U+1EDB from UTF-8 to ISO-8859-1

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true}

Search query if applicable (please use exact search query)

dork: "powered by EQdkp"

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

1.9.12.25

Ruby version number (run ruby --version)

2.3.3

Output:

[11:49:50 INFO]I'll run in default mode then!
[11:49:50 INFO]I'm searching for possible SQL vulnerable sites, using search query inurl:mod*.php?middle=

[11:49:51 SUCCESS]Site found: https://moodle.org/mod/forum/discuss.php?d=77057
[11:49:52 SUCCESS]Site found: https://moodle.org/mod/forum/discuss.php?d=277922
[11:49:53 SUCCESS]Site found: https://moodle.org/mod/forum/discuss.php?d=160567
[11:49:54 SUCCESS]Site found: https://moodle.org/mod/forum/discuss.php?d=148350
[11:49:55 SUCCESS]Site found: https://moodle.org/mod/forum/discuss.php?d=74955
[11:49:56 SUCCESS]Site found: http://www.twcenter.net/forums/showthread.php?675757-MOD-Hispania-in-the-Middle-Ages-(Updated-12-06-2015)
[11:49:57 SUCCESS]Site found: https://forum.paradoxplaza.com/forum/index.php?threads/mod-middle-earth-project.665444/
[11:49:58 SUCCESS]Site found: https://forums.bistudio.com/topic/166551-middle-east-conflict-mod/
[11:49:59 SUCCESS]Site found: http://www.gameworld.gr/gamecore/downloads/category/184-elder-scrolls?download=6504:skyrim-middle-earth-role-playing-mod
[11:50:00 SUCCESS]Site found: http://www.typingadventure.com/index.php?mod=game
[11:50:01 SUCCESS]Site found: http://gus-mod.gr/zencart_gus/index.php?main_page=product_info&products_id=180
[11:50:02 SUCCESS]Site found: http://gus-mod.gr/zencart_gus/index.php?main_page=product_info&products_id=187
[11:50:03 SUCCESS]Site found: https://moodle.pleasantonusd.net/mod/page/view.php?id=16251
[11:50:04 SUCCESS]Site found: http://forums.nexusmods.com/index.php?/topic/3941080-lotr-middle-earth-mod/
[11:50:05 SUCCESS]Site found: /settings/ads/preferences?hl=iw
[11:50:06 INFO]I've dumped possible vulnerable sites into /home/unshadow/Desktop/git-projects/whitewidow/tmp/SQL_sites_to_check.txt
[11:50:06 INFO]Parsing page for SQL syntax error: https://moodle.org/mod/forum/discuss.php?d=77057'
[11:50:08 WARNING]URL: https://moodle.org/mod/forum/discuss.php?d=77057' is not vulnerable, dumped to non_exploitable.txt
[11:50:09 INFO]Parsing page for SQL syntax error: https://moodle.org/mod/forum/discuss.php?d=277922'
[11:50:10 WARNING]URL: https://moodle.org/mod/forum/discuss.php?d=277922' is not vulnerable, dumped to non_exploitable.txt
[11:50:11 INFO]Parsing page for SQL syntax error: https://moodle.org/mod/forum/discuss.php?d=160567'
[11:50:12 WARNING]URL: https://moodle.org/mod/forum/discuss.php?d=160567' is not vulnerable, dumped to non_exploitable.txt
[11:50:13 INFO]Parsing page for SQL syntax error: https://moodle.org/mod/forum/discuss.php?d=148350'
[11:50:14 WARNING]URL: https://moodle.org/mod/forum/discuss.php?d=148350' is not vulnerable, dumped to non_exploitable.txt
[11:50:15 INFO]Parsing page for SQL syntax error: https://moodle.org/mod/forum/discuss.php?d=74955'
[11:50:16 WARNING]URL: https://moodle.org/mod/forum/discuss.php?d=74955' is not vulnerable, dumped to non_exploitable.txt
[11:50:17 INFO]Parsing page for SQL syntax error: http://www.twcenter.net/forums/showthread.php?675757-MOD-Hispania-in-the-Middle-Ages-(Updated-12-06-2015)'
[11:50:20 ERROR]URL: http://www.twcenter.net/forums/showthread.php?675757-MOD-Hispania-in-the-Middle-Ages-(Updated-12-06-2015)' failed due to an error while connecting, URL dumped to non_exploitable.txt
[11:50:20 INFO]Parsing page for SQL syntax error: https://forum.paradoxplaza.com/forum/index.php?threads/mod-middle-earth-project.665444/'
/home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:99:in `follow_redirection': Maximum number of redirect reached (RestClient::MaxRedirectsReached)
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:72:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:72:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:72:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:72:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:72:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:111:in `follow_redirection'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/abstract_response.rb:67:in `return!'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:495:in `process_result'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:421:in `block in transmit'
    from /usr/lib/ruby/2.3.0/net/http.rb:853:in `start'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:413:in `transmit'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:176:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient/request.rb:41:in `execute'
    from /home/unshadow/.gem/ruby/2.3.0/gems/rest-client-1.8.0/lib/restclient.rb:65:in `get'
    from whitewidow.rb:355:in `page'
    from whitewidow.rb:359:in `parse'
    from whitewidow.rb:424:in `block (2 levels) in begin_vulnerability_check'
    from /usr/lib/ruby/2.3.0/timeout.rb:91:in `block in timeout'
    from /usr/lib/ruby/2.3.0/timeout.rb:33:in `block in catch'
    from /usr/lib/ruby/2.3.0/timeout.rb:33:in `catch'
    from /usr/lib/ruby/2.3.0/timeout.rb:33:in `catch'
    from /usr/lib/ruby/2.3.0/timeout.rb:106:in `timeout'
    from whitewidow.rb:422:in `block in begin_vulnerability_check'
    from whitewidow.rb:419:in `each_line'
    from whitewidow.rb:419:in `begin_vulnerability_check'
    from whitewidow.rb:480:in `<main>'

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create,

if there is an issue that relates to this, please add a comment to that one and describe your specific problem. There is
also a self help guide under the docs folder. Look through the troubleshooting and self help for help.

Issue (be specific)

If you use an Dork with "-Signs like... middle.php?file= “.php?page=” it turns out an error...

Exact error message

[17:37:47 INFO] I'm searching for possible SQL vulnerable sites, using search query middle.php?file= “.php?page=”
/var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/util.rb:77:in encode': U+201C from UTF-8 to ISO-8859-1 (Encoding::UndefinedConversionError) from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/util.rb:77:in from_native_charset'
from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:243:in from_native_charset' from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:237:in block in proc_query'
from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:236:in map' from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:236:in proc_query'
from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:299:in block in build_query' from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:298:in each'
from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize/form.rb:298:in build_query' from /var/lib/gems/2.3.0/gems/mechanize-2.7.5/lib/mechanize.rb:587:in submit'
from whitewidow.rb:96:in get_urls' from whitewidow.rb:162:in

Steps to reproduce

Dork: middle.php?file= “.php?page=”

Search query if applicable

Whitewidow version number

newest

Ruby version number

ruby 2.3.1p112 (2016-04-26) [i386-linux-gnu]

Labels

• Bug
• Enhancement
• Question
• Email request

./whitewidow.rb: line 3: require_relative: command not found
./whitewidow.rb: line 8: def: command not found
./whitewidow.rb: line 9: syntax error near unexpected token "ruby #{File.basename(__FILE__)} -[OPTIONS] --[OPTIONAL-OPTIONS]"' ./whitewidow.rb: line 9: FORMAT.info("ruby #{File.basename(FILE)} -[OPTIONS] --[OPTIONAL-OPTIONS]")'

ruby version 2.2.0

ruby whitewidow.rb -f /home/user/hack/burp/whitewidow/tmp/SQL_sites_to_check.txt

( W ( h ( i ( t ( e ( w ( i ( d ( o ( w )
( S ( Q ( L )
( V ( u ( l ( n )
( S ( c ( a ( n ( n ( e ( r )
{"}/
//^
.......
.......
.......
[19:56:30 INFO]Parsing page for SQL syntax error: http://www.lancier-cable.com/inc/print.php?HostPrint=www.lancier-cable.com&path=/&layoutpath=/doc/&title=Videos&URL=http://www.lancier-cable.com/en/en/en/en/en/create.php?cat=7&lng=en'
whitewidow.rb:208:in []': invalid byte sequence in UTF-8 (ArgumentError) from whitewidow.rb:208:inblock (2 levels) in vulnerability_check'
from /usr/lib/ruby/2.2.0/timeout.rb:88:in block in timeout' from /usr/lib/ruby/2.2.0/timeout.rb:32:inblock in catch'
from /usr/lib/ruby/2.2.0/timeout.rb:32:in catch' from /usr/lib/ruby/2.2.0/timeout.rb:32:incatch'
from /usr/lib/ruby/2.2.0/timeout.rb:103:in timeout' from whitewidow.rb:206:inblock in vulnerability_check'
from whitewidow.rb:203:in each_line' from whitewidow.rb:203:invulnerability_check'
from whitewidow.rb:262:in `

Right now I see you use ', it would give better results to use ` instead.

Also, using ; and -- would be interesting too.
how about trying again with different symbol if the check failed to produce SQL results ?

Issue/Enhancement/Question (be specific)

Can't run whitewidow due to ruby (module) related error

Exact error message/Enhancement information

$ whitewidow
/usr/share/whitewidow/vendor/bundle/ruby/2.4.0/gems/rest-client-2.0.0/lib/restclient/request.rb:198:in `fetch': key not found: :ciphers (KeyError)
        from /usr/share/whitewidow/vendor/bundle/ruby/2.4.0/gems/rest-client-2.0.0/lib/restclient/request.rb:198:in `initialize'
        from /usr/share/whitewidow/vendor/bundle/ruby/2.4.0/gems/rest-client-2.0.0/lib/restclient/request.rb:52:in `new'
        from /usr/share/whitewidow/vendor/bundle/ruby/2.4.0/gems/rest-client-2.0.0/lib/restclient/request.rb:52:in `execute'
        from /usr/share/whitewidow/lib/modules/core/settings.rb:9:in `page'
        from /usr/share/whitewidow/lib/modules/core/settings.rb:18:in `parse'
        from /usr/share/whitewidow/lib/misc/banner.rb:36:in `version_type'
        from /usr/share/whitewidow/lib/imports/constants_and_requires.rb:82:in `<top (required)>'
        from whitewidow.rb:2:in `require_relative'
        from whitewidow.rb:2:in `<main>'

Backtrace from error_log file located in log/log_files/error_log.LOG

Steps to reproduce if applicable or steps on what should be done

whitewidow

Search query if applicable (please use exact search query)

User agent (if applicable)

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

git master branch

Ruby version number (run ruby --version)

ruby 2.4.1p111 (2017-03-22 revision 58053) [x86_64-linux]

Labels

• Bug
• Encoding
• User agent
• Enhancement
• Question
• Email request

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement/Question (be specific)

Getting error: 406 Not Acceptable

Exact error message/Enhancment information

406 Not Acceptable

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true, :dork=>"index.php?ev="}

Search query if applicable (please use exact search query)

index.php?ev=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

1.9.4.6

Ruby version number (run ruby --version)

2.3.3

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement/Question (be specific)

Getting error: 503 => Net::HTTPServiceUnavailable for http://ipv4.google.com/sorry/index?continue=http://www.google.com/search%3Fhl%3Den%26source%3Dhp%26biw%3D%26bih%3D%26q%3Dpadrao.php%253Fpname%253D%250A%26btnG%3DGoogle%2BSearch%26gbv%3D1%26safe%3Dstrict&hl=en&q=EgRhTWgSGOvBp8gFIhkA8aeDS7sRcuOyvRb0V4EYqCc_oESrsWbwMgNyY24 -- unhandled response

Exact error message/Enhancement information

503 => Net::HTTPServiceUnavailable for http://ipv4.google.com/sorry/index?continue=http://www.google.com/search%3Fhl%3Den%26source%3Dhp%26biw%3D%26bih%3D%26q%3Dpadrao.php%253Fpname%253D%250A%26btnG%3DGoogle%2BSearch%26gbv%3D1%26safe%3Dstrict&hl=en&q=EgRhTWgSGOvBp8gFIhkA8aeDS7sRcuOyvRb0V4EYqCc_oESrsWbwMgNyY24 -- unhandled response

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true, :agent=>true, :proxy=>"97.77.104.22:80"}

Search query if applicable (please use exact search query)

padrao.php?pname=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

2.0

Ruby version number (run ruby --version)

2.4.0

Error log information

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03
[]

2017-05-03
["/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:323:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:993:in response_redirect'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:315:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:464:in get'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:586:in submit'", "/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:44:in get_urls'", "whitewidow.rb:64:in `'"]

Running:

ruby whitewidow.rb -f /tmp/scan.txt 

Produces:

whitewidow.rb:233:in `read': No such file or directory @ rb_sysopen - /home/unshadow/Desktop/git-projects/whitewidow//tmp/scan.txt (Errno::ENOENT)
    from whitewidow.rb:233:in `begin_vulnerability_check'
    from whitewidow.rb:302:in `<main>'

Whitewidow decides that the file is in the same dir, sometimes it's not.

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create, if there is an issue that relates to this, please add a comment to that one and describe your specific problem

Issues can be found here

Issue (be specific)

Remove the colored gem and add a string expansion

Exact error message

n/a

Steps to reproduce

n/a

Search query if applicable

n/a

Whitewidow version number

1.0.6.3

Ruby version number

ruby 2.3.1p112 (2016-04-26 revision 54768) [i386-mingw32]

Labels

• Bug
• Enhancement
• Question

So, Lets say I want to test the sites but not expose my self.
Right now using a proxy for all the program is problematic because google search doesn't like it.
A --proxy= option to be used when the actual connection to the sites is made would be awesome

Right now, the program will test only the last parameter, as in:

URL: http://example.com/index.php?id=123&bla=123&lol=5

only lol=5 will be tested by adding ` in the last part.
what about testing each parameter ?

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create, if there is an issue that relates to this, please add a comment to that one and describe your specific problem

--

Issue (be specific)

Test

Exact error message

Test

Steps to reproduce

Test

Search query if applicable

Test

Whitewidow version number

Test

Ruby version number

Test

Labels

• Bug
• Enhancement
• Question
• Email request

hi,
ruby ./whitewidow.rb
If you run the above command

/var/lib/gems/2.3.0/gems/rest-client-2.0.0/lib/restclient/request.rb:809:in `rescue in transmit': SSL_connect returned=1 errno=0 state=error: certificate verify failed (RestClient::SSLCertificateNotVerified)
	from /var/lib/gems/2.3.0/gems/rest-client-2.0.0/lib/restclient/request.rb:698:in `transmit'
	from /var/lib/gems/2.3.0/gems/rest-client-2.0.0/lib/restclient/request.rb:215:in `execute'
	from /var/lib/gems/2.3.0/gems/rest-client-2.0.0/lib/restclient/request.rb:52:in `execute'
	from /var/lib/gems/2.3.0/gems/rest-client-2.0.0/lib/restclient.rb:67:in `get'
	from /home/tg/Masaüstü/whitewidow-1.6.1/lib/modules/core/settings.rb:9:in `page'
	from /home/tg/Masaüstü/whitewidow-1.6.1/lib/modules/core/settings.rb:18:in `parse'
	from /home/tg/Masaüstü/whitewidow-1.6.1/lib/misc/banner.rb:44:in `version_type'
	from /home/tg/Masaüstü/whitewidow-1.6.1/lib/imports/constants_and_requires.rb:50:in `<top (required)>'
	from ./whitewidow.rb:3:in `require_relative'
	from ./whitewidow.rb:3:in `<main>'

help me? Ubuntu 16.04

For me (And my low knowledge of SQL) the ' sign will never cause an SQL Injection to be detected.

Here is an Example:

You can see an SQLi has been detected (I did not confirm or checked it manually) but only using `, -- and ;

This isn't really an issue, more of an idea that I would like some opinions on.

This is entirely up to the community and is entirely your choice, should I create a search for XSS vulnerabilities? For example:

You will run something like ruby whitewidow.rb -d --xss it will scan for vulnerabilities like normal but will also check if a site is vulnerable to XSS scripting using a basic JS script or something, let me know what you think in the comments

root@station1:/tools/sql/whitewidow# ruby -v
ruby 2.0.0p648 (2015-12-16 revision 53162) [x86_64-linux]
root@station1:/tools/sql/whitewidow# ruby whitewidow.rb
whitewidow.rb:61: syntax error, unexpected tIDENTIFIER, expecting keyword_do or '{' or '('
... Hey now my friend, I know you're eager, I am also, but...
... ^
whitewidow.rb:62: syntax error, unexpected tIDENTIFIER, expecting keyword_end
either doesn't exist, or it's not in the di...
^
whitewidow.rb:62: syntax error, unexpected keyword_or
either doesn't exist, or it's not in the directory yo...
^
whitewidow.rb:62: syntax error, unexpected tIDENTIFIER, expecting keyword_end
...t in the directory you say it's in..
... ^
whitewidow.rb:67: syntax error, unexpected tIDENTIFIER, expecting keyword_end
Don't worry I'll wait!
^
whitewidow.rb:69: syntax error, unexpected tIDENTIFIER, expecting keyword_end
.yellow.bold # Error out because the file doesn't exist
^
root@station1:/tools/sql/whitewidow#

https://s28.postimg.org/fgyggedlp/tools_sql_whitewidow_001.png

Does the script need an higher version of ruby ?

Using -d will do the google dork run, then, the program will ask if you wish to check the link or just to save them to SQL_TO_CHECK file (Dry Run).

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create, if there is an issue that relates to this, please add a comment to that one and describe your specific problem

--

Issue (be specific)

I cant do bundle install...

Exact error message

bundle install
Fetching gem metadata from https://rubygems.org/........
Fetching version metadata from https://rubygems.org/.
Resolving dependencies...
Installing unf_ext 0.0.7.2 with native extensions
Using mime-types-data 3.2016.0521
Using net-http-digest_auth 1.4
Using net-http-persistent 2.9.4
Using mini_portile2 2.1.0
Using pkg-config 1.1.7
Using ntlm-http 0.1.1
Using webrobots 0.1.2
Using netrc 0.11.0
Using bundler 1.13.6
Gem::Ext::BuildError: ERROR: Failed to build gem native extension.

current directory: /tmp/bundler20161128-32376-14skn5funf_ext-0.0.7.2/gems/unf_ext-0.0.7.2/ext/unf_ext

/usr/bin/ruby2.3 -r ./siteconf20161128-32376-v31vjj.rb extconf.rb
checking for main() in -lstdc++... *** extconf.rb failed ***
Could not create Makefile due to some reason, probably lack of necessary
libraries and/or headers. Check the mkmf.log file for more details. You may
need configuration options.

Provided configuration options:
--with-opt-dir
--without-opt-dir
--with-opt-include
--without-opt-include=${opt-dir}/include
--with-opt-lib
--without-opt-lib=${opt-dir}/lib
--with-make-prog
--without-make-prog
--srcdir=.
--curdir
--ruby=/usr/bin/$(RUBY_BASE_NAME)2.3
--with-static-libstdc++
--without-static-libstdc++
--with-stdc++lib
--without-stdc++lib
/usr/lib/ruby/2.3.0/mkmf.rb:456:in try_do': The compiler failed to generate an executable file. (RuntimeError) You have to install development tools first. from /usr/lib/ruby/2.3.0/mkmf.rb:541:in try_link0'
from /usr/lib/ruby/2.3.0/mkmf.rb:556:in try_link' from /usr/lib/ruby/2.3.0/mkmf.rb:765:in try_func'
from /usr/lib/ruby/2.3.0/mkmf.rb:997:in block in have_library' from /usr/lib/ruby/2.3.0/mkmf.rb:942:in block in checking_for'
from /usr/lib/ruby/2.3.0/mkmf.rb:350:in block (2 levels) in postpone' from /usr/lib/ruby/2.3.0/mkmf.rb:320:in open'
from /usr/lib/ruby/2.3.0/mkmf.rb:350:in block in postpone' from /usr/lib/ruby/2.3.0/mkmf.rb:320:in open'
from /usr/lib/ruby/2.3.0/mkmf.rb:346:in postpone' from /usr/lib/ruby/2.3.0/mkmf.rb:941:in checking_for'
from /usr/lib/ruby/2.3.0/mkmf.rb:992:in have_library' from extconf.rb:6:in

To see why this extension failed to compile, please check the mkmf.log which can be found here:

/tmp/bundler20161128-32376-14skn5funf_ext-0.0.7.2/extensions/x86-linux/2.3.0/unf_ext-0.0.7.2/mkmf.log

extconf failed, exit code 1

Gem files will remain installed in /tmp/bundler20161128-32376-14skn5funf_ext-0.0.7.2/gems/unf_ext-0.0.7.2 for inspection.
Results logged to /tmp/bundler20161128-32376-14skn5funf_ext-0.0.7.2/extensions/x86-linux/2.3.0/unf_ext-0.0.7.2/gem_make.out

An error occurred while installing unf_ext (0.0.7.2), and Bundler cannot continue.
Make sure that gem install unf_ext -v '0.0.7.2' succeeds before bundling.

Steps to reproduce

Search query if applicable

Whitewidow version number

Ruby version number

Labels

• Bug
• Enhancement
• Question
• Email request

Whether to support Linux

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement/Question (be specific)

Getting error: uninitialized constant SEARCH_QUERY

Exact error message/Enhancement information

uninitialized constant SEARCH_QUERY

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true, :agent=>true}

Search query if applicable (please use exact search query)

inurl:/modulesinurl:/vwarinurl:/admininurl:/admin.php?vwar_root=index.php?loc=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

2.0

Ruby version number (run ruby --version)

2.4.0

Error log information

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03
[]

2017-05-03
["/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:323:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:993:in response_redirect'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize/http/agent.rb:315:in fetch'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:464:in get'", "/home/baal/.rvm/gems/ruby-2.4.0/gems/mechanize-2.7.5/lib/mechanize.rb:586:in submit'", "/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:44:in get_urls'", "whitewidow.rb:64:in `'"]

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03

["whitewidow.rb:66:in <main>'"] ["whitewidow.rb:66:in '"]

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Issue/Enhancement/Question (be specific)

Getting error: too many connection resets (due to end of file reached - EOFError) after 1 requests on 14403200, last used 10.30447847 seconds ago

Exact error message/Enhancement information

too many connection resets (due to end of file reached - EOFError) after 1 requests on 14403200, last used 10.30447847 seconds ago

Steps to reproduce if applicable or steps on what should be done

Run with {:default=>true, :agent=>true, :proxy=>"61.5.207.102:80"}

Search query if applicable (please use exact search query)

summary.php?PID=

User agent (if applicable)

N/A

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

2.0

Ruby version number (run ruby --version)

2.4.0

Error log information

2017-05-03

["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]
["/home/baal/bin/ruby/whitewidow/lib/whitewidow/scanner.rb:43:in get_urls'", "whitewidow.rb:64:in '"]

2017-05-03
[]

I'm opening this issue due to adding 40 country specific search queries, there are 20 co.uk, and 20.ng I want to keep a log on how well they go as to decide whether or not to incorporate country specific queries into whitewidow. If you get a run of one of them, post here and let me know how they went, pictures would be greatly appreciated.

Issue/Enhancement/Question (be specific)

Hi there,

I've installed your tool in ParrotOS and when I try to execute it i had this message:

Exact error message/Enhancement information

/home/user/tools/whitewidow/lib/helpers/sqlmap_config_helper.rb:13:in `find_python_env_var': undefined method `split' for nil:NilClass (NoMethodError)
	from /home/jask/tools/whitewidow/lib/imports/constants_and_requires.rb:59:in `<top (required)>'
	from whitewidow.rb:2:in `require_relative'
	from whitewidow.rb:2:in `<main>'

Steps to reproduce if applicable or steps on what should be done

cd /home/user/tools/whitewidow

Search query if applicable (please use exact search query)

ruby whitewidow.rb -d

User agent (if applicable)

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

I can't get it.

Ruby version number (run ruby --version)

ruby 2.3.3p222 (2016-11-21) [x86_64-linux-gnu]

Labels

• Bug
• Encoding
• User agent
• Enhancement
• Question
• Email request

Thanks a lot!

Before you create an issue please make sure that there are no issues that relate to your issue. if there is an issue that relates to one, please add a comment to that issue and describe your specific problem. If your issue has to do with any sort of installation or syntax errors, please read the self_help under the docs directory. If none of those answer your question, make an issue

Linux kali 4.8.0-kali1-686-pae #1 SMP Debian 4.8.5-1kali1 (2016-11-04) i686 GNU/Linux

Issue/Enhancement/Question (be specific)

Exact error message/Enhancement information

ruby whitewidow.rb
Could not find nokogiri-1.6.8 in any of the sources
Run bundle install to install missing gems.
root@kali:~/Scrivania/whitewidow# bundle install
Don't run Bundler as root. Bundler can ask for sudo if it is needed,
and installing your bundle as root will break this application for
all non-root users on this machine.
Warning: the running version of Bundler is older than the version that created the lockfile. We suggest you upgrade to the latest version of Bundler by running gem install bundler.
Fetching gem metadata from https://rubygems.org/
Fetching version metadata from https://rubygems.org/
Using addressable 2.4.0
Using safe_yaml 1.0.4
Using diff-lcs 1.2.5
Using unf_ext 0.0.7.2
Using hashdiff 0.3.0
Using mime-types-data 3.2016.0521
Using net-http-digest_auth 1.4
Using net-http-persistent 2.9.4
Using mini_portile2 2.1.0
Using pkg-config 1.1.7
Using ntlm-http 0.1.1
Using webrobots 0.1.2
Using netrc 0.11.0
Using rspec-support 3.5.0
Using vcr 3.0.0
Using bundler 1.12.5
Using crack 0.4.3
Using unf 0.1.4
Using mime-types 3.1
Installing nokogiri 1.6.8 with native extensions

Gem::Ext::BuildError: ERROR: Failed to build gem native extension.

current directory: /var/lib/gems/2.3.0/gems/nokogiri-1.6.8/ext/nokogiri

/usr/bin/ruby2.3 -r ./siteconf20170116-4775-u30nt9.rb extconf.rb
Using pkg-config version 1.1.7
checking if the C compiler accepts ... yes
Building nokogiri using packaged libraries.
Using mini_portile version 2.1.0
checking for gzdopen() in -lz... no
zlib is missing; necessary for building libxml2
*** extconf.rb failed ***
Could not create Makefile due to some reason, probably lack of necessary
libraries and/or headers. Check the mkmf.log file for more details. You may
need configuration options.

Provided configuration options:
--with-opt-dir
--without-opt-dir
--with-opt-include
--without-opt-include=${opt-dir}/include
--with-opt-lib
--without-opt-lib=${opt-dir}/lib
--with-make-prog
--without-make-prog
--srcdir=.
--curdir
--ruby=/usr/bin/$(RUBY_BASE_NAME)2.3
--help
--clean
--use-system-libraries
--enable-static
--disable-static
--with-zlib-dir
--without-zlib-dir
--with-zlib-include
--without-zlib-include=${zlib-dir}/include
--with-zlib-lib
--without-zlib-lib=${zlib-dir}/lib
--enable-cross-build
--disable-cross-build

To see why this extension failed to compile, please check the mkmf.log which can be found here:

/var/lib/gems/2.3.0/extensions/x86-linux/2.3.0/nokogiri-1.6.8/mkmf.log

extconf failed, exit code 1

Gem files will remain installed in /var/lib/gems/2.3.0/gems/nokogiri-1.6.8 for inspection.
Results logged to /var/lib/gems/2.3.0/extensions/x86-linux/2.3.0/nokogiri-1.6.8/gem_make.out
Using rspec-core 3.5.4
Using rspec-expectations 3.5.0
Using rspec-mocks 3.5.0
Using webmock 1.24.2
Using domain_name 0.5.20160615
An error occurred while installing nokogiri (1.6.8), and Bundler
cannot continue.
Make sure that gem install nokogiri -v '1.6.8' succeeds before
bundling.
root@kali:~/Scrivania/whitewidow#

Backtrace from error_log file located in log/log_files/error_log.LOG

Steps to reproduce if applicable or steps on what should be done

Search query if applicable (please use exact search query)

User agent (if applicable)

Whitewidow version number (must have the actual version run ruby whitewidow.rb --version)

Ruby version number (run ruby --version)

Labels

• Bug
• Encoding
• User agent
• Enhancement
• Question
• Email request

Before you create an issue please make sure that there are no issues that relate to your issue you are trying to create,

if there is an issue that relates to this, please add a comment to that one and describe your specific problem. There is
also a self help guide under the docs folder. Look through the troubleshooting and self help for help.

Issue (be specific)

After a -s Scan on a Webpage, Whitewidow "encountered an error and cannot continue".. It totally stops the scan, also outputs a bunch of encoding errors

Exact error message

ruby whitewidow.rb -s browsergames.info
[13:33:46 INFO] Found http://www.w3.org/1999/xhtml
[13:33:46 INFO] Found http://www.w3.org/2003/g/data-view
[13:33:46 INFO] Found http://www.w3.org/StyleSheets/TR/base
[13:33:46 INFO] Found http://www.w3.org/2008/07/rdfa-xslt
[13:33:46 INFO] Found http://www.w3.org/2003/g/data-view#
[13:33:47 INFO] Found http://www.w3.org/1999/xhtml
[13:33:47 INFO] Found http://www.w3.org/2008/07/rdfa-xslt
[13:33:47 INFO] Found http://www.w3.org/
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
[13:37:17 INFO] Found http://www.w3.org/1999/xhtml
[13:37:17 INFO] Found http://www.browsergames.info/index.php?a=out&u='
[13:37:18 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:18 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:18 INFO] Found http://www.browsergames.info/
[13:37:18 INFO] Found http://www.browsergames.info/
[13:37:18 INFO] Found http://www.browsergames.info/
[13:37:19 INFO] Found http://www.browsergames.info/index.php?a=join
[13:37:19 INFO] Found http://www.browsergames.info/index.php?a=user_cpl
[13:37:19 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=rlk
[13:37:19 INFO] Found http://js.adscale.de/getads.js
[13:37:19 INFO] Found http://js.adscale.de/getads.js
[13:37:20 INFO] Found http://www.facebook.com/pages/browsergamesinfo/240976396022694
[13:37:20 INFO] Found http://www.browsergames.info/index.php?a=page&id=impressum
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
[13:37:23 INFO] Found http://www.facebook.com/pages/browsergamesinfo/240976396022694
[13:37:23 INFO] Found http://www.browsergames.info/index.php?a=page&id=impressum
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
[13:37:28 INFO] Found http://www.w3.org/1999/xhtml
[13:37:28 INFO] Found http://www.browsergames.info/index.php?a=out&u='
[13:37:28 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:28 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:28 INFO] Found http://www.browsergames.info/
[13:37:29 INFO] Found http://www.browsergames.info/
[13:37:29 INFO] Found http://www.browsergames.info/
[13:37:29 INFO] Found http://www.browsergames.info/index.php?a=join
[13:37:29 INFO] Found http://www.browsergames.info/index.php?a=user_cpl
[13:37:29 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=rlk
[13:37:30 INFO] Found http://js.adscale.de/getads.js
[13:37:30 INFO] Found http://js.adscale.de/getads.js
[13:37:30 INFO] Found http://www.facebook.com/pages/browsergamesinfo/240976396022694
[13:37:30 INFO] Found http://www.browsergames.info/index.php?a=page&id=impressum
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xB3 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
...
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0xFF 0xC3 0x98 0xC3
I/O error : encoder error
[13:37:42 INFO] Found http://www.w3.org/1999/xhtml
[13:37:43 INFO] Found http://www.browsergames.info/index.php?a=out&u='
[13:37:43 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:43 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=mafiakoenig
[13:37:43 INFO] Found http://www.browsergames.info/
[13:37:43 INFO] Found http://www.browsergames.info/
[13:37:44 INFO] Found http://www.browsergames.info/
[13:37:44 INFO] Found http://www.browsergames.info/index.php?a=join
[13:37:44 INFO] Found http://www.browsergames.info/index.php?a=user_cpl
[13:37:44 INFO] Found http://www.browsergames.info/index.php?a=out&go=1&u=rlk
[13:37:44 INFO] Found http://js.adscale.de/getads.js
[13:37:45 INFO] Found http://js.adscale.de/getads.js
[13:37:45 INFO] Found http://www.facebook.com/pages/browsergamesinfo/240976396022694
[13:37:45 INFO] Found http://www.browsergames.info/index.php?a=page&id=impressum
encoding error : output conversion failed due to conv error, bytes 0xA2 0x3C 0x2F 0x70
I/O error : encoder error
encoding error : output conversion failed due to conv error, bytes 0x89 0x50 0x4E 0x47
I/O error : encoder error
[13:37:45 ERROR] browsergames.info encountered an error and cannot continue.

Steps to reproduce

Make an Scan on browsergames.info

Search query if applicable

-s browsergames.info

Whitewidow version number

1.7.2.9

Ruby version number

ruby 2.3.1p112 (2016-04-26) [i386-linux-gnu]

Labels

• Bug
• Encoding
• Enhancement
• Question
• Email request