Initial commit

Author: TheWation

.gitignore

@@ -0,0 +1,34 @@
+# Python
+__pycache__/
+*.pyc
+*.pyo
+*.pyd
+*.pyz
+*.pyw
+*.pyc
+
+# Virtual Environment
+venv/
+venv*/
+ENV/
+env*/
+.venv/
+.venv*/
+dist/
+build/
+*.egg-info/
+*.egg
+*.egg-info
+
+# VS Code
+.vscode/
+.settings/
+*.code-workspace
+
+# Logs and Databases
+*.log
+*.sqlite3
+*.db
+
+# Environment Variables
+.env

CODE_OF_CONDUCT.md

@@ -0,0 +1,19 @@
+# Contributor Code of Conduct
+
+As a contributor to this project, we ask that you adhere to the following code of conduct:
+
+1. Be respectful and considerate of others, regardless of their race, gender, religion, or other personal characteristics.
+
+2. Avoid using derogatory or offensive language or behavior.
+
+3. Stay focused on the issues at hand and avoid personal attacks or ad hominem arguments.
+
+4. Be open to constructive feedback and willing to learn from others.
+
+5. Respect the privacy of others and avoid sharing personal information without their consent.
+
+6. Adhere to the project's guidelines and conventions for contributions.
+
+7. Help create a positive and supportive community by encouraging others and offering help when needed.
+
+We take violations of this code of conduct seriously, and reserve the right to remove contributors who engage in inappropriate behavior. By contributing to this project, you agree to abide by this code of conduct and help create a safe and welcoming environment for all members of the community.

CONTRIBUTING.md

@@ -0,0 +1,25 @@
+# Contributing to Project
+
+Thank you for your interest in contributing to Project! We welcome contributions from the community and appreciate any feedback or suggestions you may have.
+
+## Submitting Issues
+
+If you encounter any issues with Project, please submit them through the project's [GitHub Issues](https://github.com/TheWation/WebSecurityVision/issues) page. Please include as much detail as possible, including the steps to reproduce the issue and any error messages or logs.
+
+## Contributing Code
+
+If you would like to contribute code to Project, please follow these steps:
+
+1. Fork the project repository to your own GitHub account.
+
+2. Create a new branch for your changes.
+
+3. Make your changes and commit them to your branch.
+
+4. Push your branch to your forked repository.
+
+5. Submit a pull request from your branch to the Project repository.
+
+Please make sure to include a detailed description of your changes and why you think they are necessary. We also ask that you follow the project's coding standards and conventions.
+
+Thank you for your contribution!

FavXHasher.py

@@ -0,0 +1,48 @@
+import argparse
+import mmh3
+import requests
+import codecs
+
+def logo() -> str:
+    """Return the logo/banner."""
+    return '''
+____    __    ____  ___   .___________. __    ______   .__   __. 
+\   \  /  \  /   / /   \  |           ||  |  /  __  \  |  \ |  | 
+ \   \/    \/   / /  ^  \ `---|  |----`|  | |  |  |  | |   \|  | 
+  \            / /  /_\  \    |  |     |  | |  |  |  | |  . `  | 
+   \    /\    / /  _____  \   |  |     |  | |  `--'  | |  |\   | 
+    \__/  \__/ /__/     \__\  |__|     |__|  \______/  |__| \__| 
+
+                          FavXHasher v1.0                                       
+'''
+
+def generate_favicon_hash(url: str) -> None:
+    """Generate hash for a given favicon URL."""
+    try:
+        response = requests.get(url)
+        favicon_content = codecs.encode(response.content, "base64")
+        favicon_hash = mmh3.hash(favicon_content)
+        print(f'[+] Favicon Hash is: {favicon_hash}')
+        print(f'[!] Use http.favicon.hash:{favicon_hash} on Shodan to detect potential phishing websites.')
+    except requests.exceptions.RequestException as e:
+        print(f"An error occurred: {e}")
+
+
+
+class CustomArgumentParser(argparse.ArgumentParser):
+    def format_help(self):
+        return logo() + super().format_help()
+
+def main() -> None:
+    parser = CustomArgumentParser(description='This tool calculates the hash value of a favicon from a given URL, enabling the detection of potential phishing websites by leveraging Shodan\'s search capabilities, For more information, visit the project repository: https://github.com/TheWation/FavXHasher')
+    parser.add_argument('-u', '--url', type=str, help='Favicon URL to generate Hash')
+    args = parser.parse_args()
+
+    if args.url:
+        print(logo())
+        generate_favicon_hash(args.url)
+    else:
+        parser.print_help()
+
+if __name__ == "__main__":
+    main()

LICENSE.md

@@ -0,0 +1,20 @@
+Copyright (c) 2012-2022 Scott Chacon and others
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

README.md

@@ -0,0 +1,40 @@
+# FavXHasher
+
+[![made-with-python](http://forthebadge.com/images/badges/made-with-python.svg)](https://www.python.org/)
+[![built-with-love](http://forthebadge.com/images/badges/built-with-love.svg)](https://gitHub.com/TheWation/)
+
+FavXHasher is a simple command-line tool designed to calculate the hash value of a favicon from a given URL. This tool can be particularly useful for detecting potential phishing websites by leveraging Shodan's search capabilities.
+
+## Prerequisites
+
+- Python 3.7 or later
+- `pip` package manager
+
+## Installation
+
+1. Clone this repository:
+
+```bash
+git clone https://github.com/TheWation/FavXHasher.git
+cd FavXHasher
+```
+
+2. Install the required dependencies:
+```
+pip install -r requirements.txt
+```
+
+## Usage
+To use FavXHasher, simply run the script with the `-u` or `--url` option followed by the URL of the favicon you want to generate the hash for. For example:
+
+```bash
+python FavXHasher.py -u http://example.com/favicon.ico
+```
+
+After executing the command, FavXHasher will fetch the favicon from the provided URL, calculate its hash value, and display the result along with a tip on how to use it with Shodan to detect potential phishing sites.
+
+## Disclaimer
+FavXHasher is provided for educational and informational purposes only. The authors do not condone or support any illegal activities that may be carried out using this tool. It is the responsibility of the user to ensure that they have appropriate authorization before using this tool on any website.
+
+## License
+`FavXHasher` is made with ♥  by [Wation](https://github.com/TheWation) and it's released under the `MIT` license.

requirements.txt

@@ -0,0 +1,2 @@
+mmh3
+requests