Jira Security Auditing Tool

beyzanur
Posted by beyzanur November 21, 2021

superior_hosting_service

jira lens

Fast and customizable vulnerability scanner For JIRA written in Python

What is this?

Jira-Lens  is a Python Based vulnerability Scanner for JIRA. Jira is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management. This tool Performs 25+ Checks including CVE’s and Multiple Disclosures on the Provided JIRA Instance.

Usage

Jira-Lens can be easily used from the command line

  • Clone this Repo Using 
  • Complete the setup using
git clone https://github.com/MayankPandey01/Jira-Lens.git

python3 setup.py install

python3 Jira-Lens.py -u {URL}
Jira

Additional Arguments can be passed to use tool in different way:

  • -u : To Provide a Single URL of JIRA Instance for Testing
  • -f : Path of File Containing List of URL’s of JIRA Instance, properly Formatted and 1 url par Line
  • -o : To Provide a Custom Output Folder Location [ default= output/]

Installation

Using pip

$ pip install Jira-Lens

Using Git

  • git clone https://github.com/MayankPandey01/Jira-Lens.git
  • After Installation run the setup.py file to set up the tool.

Recommended Python Version:

  • This Tool Only Supports Python 3.
  • The recommended version for Python 3 is 3.8.x.

Dependencies:

The dependencies can be installed using the requirements file:

Installation on Windows: 

  • python.exe -m pip3 install -r requirements.txt.

Installation on Linux: 

  • sudo python3 pip3 install -r requirements.txt.

Bug Bounties

This tool is focused mainly on Bug Bounty Hunters and Security Professionals . You Can Use Jira-Lens to Scan JIRA Instance of the Target Company.

Why Use This 

  • It Provides a Detailed output After the Scan is Completed With all the Findings.
  • Take Inputs From File To Scan Multiple Instance
  • Fast and Easy to Setup
  • Can Be Added Directly To Your Automation Scripts
  • Regularly Updated Scanning Database

Contribution 

We Love to Get Contribution from the Open Source Community. You are Welcome to Provide your Important Suggestions to make this tool more Awesome. Open a PR and we will See to it ASAP.

Ways to contribute

  • Suggest a feature
  • Adding CVE’s and Disclosures Check
  • Report a bug
  • Fix something and open a pull request
  • Create a browser extension
  • Help me document the code
  • Spread the word

DISCLAIMER

This project is a personal development. Please respect its philosophy and don’t use it for evil purposes. By using Jira-Lens, you agree to the MIT license included in the repository. For more details at The MIT License — OpenSource.

Using Jira-Lens for attacking targets without prior mutual consent is illegal. It is the end user’s responsibility to obey all applicable local, state, and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program. Happy Hacking

Licensing

This project is licensed under the MIT license.

Github Link
RedTeam Toolkit

Tags: