The latest articles on DEV Community by Roman Madaev (@m-o-z-z-i-x). https://dev.to/m-o-z-z-i-x https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2985385%2F9cad0e52-d229-46a2-b9b7-80a5a607ee22.jpg https://dev.to/m-o-z-z-i-x en Roman Madaev Sun, 22 Jun 2025 01:52:34 +0000 https://dev.to/m-o-z-z-i-x/nr34p3r-a-fast-multi-threaded-port-scanner-for-detecting-open-ports-and-services-2d0 https://dev.to/m-o-z-z-i-x/nr34p3r-a-fast-multi-threaded-port-scanner-for-detecting-open-ports-and-services-2d0 <p>A few months ago I found myself in need of a lightweight port scanner that could deliver actionable insights quickly without bloating system resources or drowning me in irrelevant data. Existing tools felt either too bulky or too barebones, so I decided to build something new — NR34P3R , a fast, multi-threaded port scanner with an intuitive terminal interface and smart service detection</p> <h2> What is it? </h2> <p>NR34P3R is a modern port scanner designed to help security professionals and sysadmins detect open ports and identify associated services with precision. It supports multi-threaded scanning for maximum efficiency, automatically resolves over 3000 service names, and presents results in a clean, color-coded format using Rich tables</p> <h2> Demo </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fw43moiko4vamzbnoysdr.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fw43moiko4vamzbnoysdr.gif" alt="Demo" width="760" height="347"></a></p> <h2> How does it work? </h2> <p>NR34P3R uses a modular scanning engine that leverages Python's socket library and advanced concurrency. You define a target host and specify a port range — single ports, custom ranges (80-443), or full-range scans (1-65535). The scanner then sends asynchronous requests and collects responses, resolving service names and descriptions from its built-in database</p> <p>When a port is found open, NR34P3R automatically fetches service metadata including protocol, description, and known vulnerabilities (if available), giving you immediate context for further investigation</p> <h2> Key Features: </h2> <ul> <li><p><strong>Ultra-Fast Multi-threaded Scanning</strong><br> Supports up to 100 concurrent threads for lightning-fast scans across large port ranges</p></li> <li><p><strong>Rich Service Database</strong><br> Automatically identifies over 3000 services with detailed descriptions powered by WikiLess integration</p></li> <li><p><strong>Colorful Terminal UI</strong><br> Interactive output with live progress bars, syntax highlighting, and adaptive formatting via Colorama and Rich</p></li> <li><p><strong>Structured Results</strong><br> Displays findings in organized tables showing port number, service name, status, and description</p></li> <li><p><strong>Flexible Scanning Options</strong><br> Supports single ports, custom ranges, or full-range scans from 1 to 65535</p></li> </ul> <h2> Roadmap: </h2> <ul> <li><p><strong>ASN Lookup</strong> — Identify network ownership for scanned hosts</p></li> <li><p><strong>JSON Reporting</strong> — Export scan results for documentation and analysis</p></li> <li><p><strong>Ping Sweep</strong> — Check host availability before scanning</p></li> <li><p><strong>Port Test Tool</strong> — Verify specific port configurations and firewall rules</p></li> </ul> <h2> Repository Link </h2> <p><a href="https://github.com/m-o-z-z-i-x/NR34P3R" rel="noopener noreferrer">https://github.com/m-o-z-z-i-x/NR34P3R</a></p> programming python security scanner Roman Madaev Sun, 22 Jun 2025 01:38:36 +0000 https://dev.to/m-o-z-z-i-x/cr4sh3r-tool-for-detecting-vulnerabilities-in-wordpress-plugins-15a7 https://dev.to/m-o-z-z-i-x/cr4sh3r-tool-for-detecting-vulnerabilities-in-wordpress-plugins-15a7 <p>A couple of months ago, I came across a WordPress site that needed a quick security check for obvious vulnerabilities. It all started with routine work: standard checks, searching for known CVEs, and inspecting popular plugins. But what I found made me think more seriously — critical Arbitrary File Download vulnerabilities in several plugins that allowed access to wp-config.php with just a few requests</p> <p>This became the reason for creating CR4SH3R — a simple yet powerful tool designed to automate the detection of such vulnerabilities within the WordPress ecosystem</p> <h2> What is it? </h2> <p>CR4SH3R is a GUI utility designed to scan websites for Arbitrary File Download vulnerabilities in WordPress plugins. Its main purpose is to detect paths through which the wp-config.php file can be downloaded, and automatically extract sensitive information from it — such as database login credentials and other important parameters</p> <h2> Screenshots </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fyrkghwg3qg7luctvekjs.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fyrkghwg3qg7luctvekjs.jpg" alt="Pic. 1" width="800" height="511"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqneql2bh9emu3mgq9zm8.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fqneql2bh9emu3mgq9zm8.jpg" alt="Pic. 2" width="800" height="511"></a></p> <h2> How does it work? </h2> <p>The scanner uses a pre-prepared list of potentially vulnerable URL paths and sends HTTP requests to the target domain. If the server returns the contents of the wp-config.php file, the program parses it and displays only the relevant data. There’s also an option to save results in .xlsx format</p> <p><strong>Example payload:</strong><br> <code>/wp-content/plugins/vulnerable-plugin/download.php?file=../../../../wp-config.php</code></p> <h2> Key Features: </h2> <ul> <li><p><strong>Multi-threaded Scanning</strong><br> Fast scanning using concurrent request processing. Supports up to 10 simultaneous checks</p></li> <li><p><strong>Automatic Data Extraction from wp-config.php</strong><br> If the file is found, CR4SH3R automatically extracts values like:<br> <code>DB_NAME</code><br> <code>DB_USER</code><br> <code>DB_PASSWORD</code><br> <code>DB_HOST</code><br> <code>table_prefix</code></p></li> <li><p><strong>Excel (.xlsx) Report Generation</strong><br> All findings are saved in a structured and easy-to-share format</p></li> <li><p>Simple GUI Interface<br> Built using PyQt5 for user-friendly interaction</p></li> </ul> <h2> Roadmap: </h2> <ul> <li><p><strong>Auto-updater</strong> — built-in version checker</p></li> <li><p><strong>Config Presets</strong> — save and load frequently used scan settings</p></li> <li><p><strong>Session History</strong> — track previous scans with timestamps and results</p></li> <li><p><strong>Encrypted .env File</strong> — prevent plaintext exposure when bundled into binaries</p></li> </ul> <h2> Repository Link </h2> <p><a href="https://github.com/m-o-z-z-i-x/CR4SH3R" rel="noopener noreferrer">https://github.com/m-o-z-z-i-x/CR4SH3R</a></p> wordpress python security scanner