InfoSec News & Investigations

laravelN00b – Automated Scan .env Files And Checking Debug Mode In Victim Host

Incorrect configuration allows you to access .env files or reading env variables. LaravelN00b automated scan .env files and checking debug mode in victim host.

Scan rationale

  • Scan host.
  • Resolve IP adress and check .env file in IP Adress
  • Checking debug mode Laravel ( Read .env variables )

1 – Install with
chmod +x
2 – Install manual
go get
go get
go run main.go --hostname
go build laravelN00b main.go

./laravelN00b --hostname

Download laravelN00b
Original Source