Awesome
<h1 align="center"> <br> <a href="https://github.com/MayankPandey01/Jira-Lens/"><img width="750" height="250" src="https://user-images.githubusercontent.com/29165227/141689309-961fa172-5c15-4476-bd84-1c80899a98dc.png"></a> </h1> <h4 align="center">Fast and customizable vulnerability scanner For JIRA.</h4> <p align="center"> <a href="https://www.python.org/"><img src="https://img.shields.io/badge/Made%20with-Python-1f425f.svg"></a> <a href="https://github.com/MayankPandey01/Jira-Lens/issues"><img src="https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square"></a> <a href="https://pypi.org/project/Jira-Lens/"><img src="https://img.shields.io/pypi/v/Jira-Lens"></a> <a href="https://twitter.com/mayank_pandey01"><img src="https://img.shields.io/twitter/follow/mayank_pandey01?style=social"></a> <a href="https://pypi.org/project/Jira-Lens/"><img src="https://img.shields.io/pypi/pyversions/Jira-Lens"></a> <a href="https://pypi.python.org/pypi/ansicolortags/"><img src="https://img.shields.io/pypi/l/ansicolortags.svg"></a> <a href="https://github.com/ellerbrock/open-source-badges/"><img src="https://badges.frapsoft.com/os/v1/open-source.svg?v=103"></a> </p>🤔 What is this?
Jira-Lens 🔍 is a Python Based vulnerability Scanner for JIRA. Jira is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management. This tool Performs 25+ Checks including CVE's and Multiple Disclosures on the Provided JIRA Instance.
🚀 Usage
Jira-Lens can be easily used from the command line
- Clone this Repo Using
git clone https://github.com/MayankPandey01/Jira-Lens.git
- Complete the setup using
python3 setup.py install
python3 Jira-Lens.py -u {URL}
Additional Arguments can be passed to use tool in different way:
-u
: To Provide a Single URL of JIRA Instance for Testing-f
: Path of File Containing List of URL's of JIRA Instance, properly Formatted and 1 url par Line-o
: To Provide a Custom Output Folder Location [ default= output/]-i
: To disable ssl certificate verification
Docker setup and usage
git clone https://github.com/MayankPandey01/Jira-Lens.git
cd Jira-Lens
docker build . -t jira-lens
docker run -v "$(PWD)/Jira-Lens/output":/app/Jira-Lens/output jira-lens <url>
🔧Installation
🔨 Using pip
pip install Jira-Lens
🔨 Using Git
git clone https://github.com/MayankPandey01/Jira-Lens.git
- After Installation process, run the setup.py file to set up the tool.
🧪 Recommended Python Version:
- This Tool Only Supports Python 3.
- The recommended version for Python 3 is 3.8.x.
⛳ Dependencies:
The dependencies can be installed using the requirements file:
Installation on Windows:
- python.exe -m pip3 install -r requirements.txt.
Installation on Linux:
- sudo python3 pip3 install -r requirements.txt.
🐞 Bug Bounties
This tool is focused mainly on Bug Bounty Hunters
and Security Professionals
. You Can Use Jira-Lens to Scan JIRA Instance of the Target Company.
Why Use This ❓
-
It Provides a Detailed output After the Scan is Completed With all the Findings.
-
Take Inputs From File To Scan Multiple Instance
-
Fast and Easy to Setup ⚡
-
Can Be Added Directly To Your Automation Scripts
-
Regularly Updated Scanning Database
🎯 Contribution
We Love to Get Contribution from the Open Source Community💙. You are Welcome to Provide your Important Suggestions to make this tool more Awesome. Open a PR and we will See to it ASAP.
Ways to contribute
- Suggest a feature
- Adding CVE's and Disclosures Check
- Report a bug
- Fix something and open a pull request
- Create a browser extension
- Help me document the code
- Spread the word
📚 DISCLAIMER
This project is a personal development. Please respect its philosophy and don't use it for evil purposes. By using Jira-Lens, you agree to the MIT license included in the repository. For more details at The MIT License — OpenSource.
Using Jira-Lens for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state, and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program. Happy Hacking ✨✨
📃 Licensing
This project is licensed under the MIT license.