quarta-feira, 1 de julho de 2020

Xcrafter - Portable Excel Open XML format command line file crafter

Xcrafter

Xcrafter is a portable Excel Open XML format command line file crafter. Xcrafter allows you to create xlsx files and embed payloads, like XSS, XXE, SQli,SSRF, and others in an easy and fast way, even without Excel or Calc installed.
Also, Xcrafter can create regular excel files if you are not looking for a security tool.

Installation

Download the latest release and unpack it in the desired location. Remember to install GoLang in case you want to run from the source. The Xcrafter uses the Excelize library. Check https://github.com/360EntSecGroup-Skylar/excelize/ for more information.
Here you can find the compiled binary.

License

Xcrafter is licensed under the SushiWare license. Check docs/license.txt for more information.

Usage/Help

Please refer to the output of -h for usage information and general help. Also, you can contact me on ##spoonfed@freenode.org (two #)
Usage of Xcrafter.exe:
-c string
        Column as a range where the payload will be placed. Use a colon as a range separator and a comma to add a new range. Ex: C1:F1,J7:N7,H1:K1
  -e string
        Use this option to set a different payload from -p option. For single cells only.
  -l string
        Line range of a column where the payload will be placed. Use a colon as a range separator and a comma to add a new range. Ex. A1:A10,B1:B10
  -o string
        Crafted file name output. (default "Xcrafter.xlsx")
  -p string
        Any payload to be written in the file.
  -s string
        Single cells where the payload will be placed. Use a comma as a separator. Ex: A1,H4,D20
  -v    Prints the current version and exit.
  -w string
        Set the worksheet name. (default "Sheet1")

Um comentário:

  1. How to get to the new Mohegan Sun in Connecticut
    The Mohegan Sun 전라북도 출장샵 is one 여수 출장마사지 of the largest, most 구미 출장안마 distinctive, 성남 출장마사지 and 동두천 출장샵 spectacular entertainment, gaming, shopping and dining destinations in the United States.

    ResponderExcluir