View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0007005||Kali Linux||Kali Package Bug||public||2021-01-22 05:18||2021-03-02 08:48|
|Summary||0007005: metagoofil does not do the metadata analysis stage - which is kind of the point of its existance|
Version 2.2 which gets installed by apt (and therefore, i suspect, the default version included with the distribution) ONLY downloads the files. It lacks the libraries and code to do the metadata parsing.
Also, this version doesnt play nicely when it receives a status 429 (too many requests) from the server - it just throws and exception.
|Steps To Reproduce|
metagoofil -d https://sans.org -t doc,pdf,xls -l 200 -o sans_files -f sans_results.html
This complains that sans_results.html is an unexpected parameter. the functionality to save the exfiltration result to this file does not exist in the script.
So try this:
metagoofil -d https://sans.org -t doc,pdf,xls -l 200 -o sans_files -f
This time (on my vm) it will download the .docs and .pdf's, and then throw an exception when it gets a 429 from the server. It SHOULD deal with the 429 gracefully and back off the request rate a bit.
Finally (having waited a long time for the server to get out of it's grumpy mood)....
metagoofil -d https://sans.org -t xls -l 200 -o sans_files -f
Now the .xls files are downloaded... and the program ends. No attempt is made to search the metadata - there is no code in the script to do this.
I have solved this on my VM by installing what appears to be an older version (still 2.2, but it's a python 2 script with all the necessary libraries and code) by doing:
sudo rm -rf /usr/share/metagoofil
and then editing /usr/bin/metagoofil so that it runs /usr/share/metagoofil/metagoofil.py with python2 (not 3).
I dont know who owns https://github.com/WiReD-/metagoofil.git, but it includes the GNU v2 public licence.
Thanks for your report.
For metagoofil we switched to an other upstream repo to have python 3 support.
I will report the issue with status 429 to upstream.
version 2.2.+git20210226-0kali1fixes exception 429 issue
|2021-01-22 05:18||bl4krat||New Issue|
|2021-01-22 05:29||bl4krat||Note Added: 0014135|
|2021-02-02 09:20||sbrun||Assigned To||=> sbrun|
|2021-02-02 09:20||sbrun||Status||new => confirmed|
|2021-02-02 09:20||sbrun||Note Added: 0014181|
|2021-02-02 09:24||sbrun||Relationship added||related to 0007025|
|2021-02-02 09:30||sbrun||Note Added: 0014182|
|2021-03-02 08:47||sbrun||Note Added: 0014258|
|2021-03-02 08:48||sbrun||Status||confirmed => resolved|
|2021-03-02 08:48||sbrun||Resolution||open => fixed|