Exploitation of Python 3 apps, Docker testing environments, TravisCI

• Use stdout for prints to close #47
• Support Python3 to close #33
• Use Docker for testing environments
• Use TravisCI
• Fix Smarty caching quirks
• Add requirements.txt
• Fix Jinja2 false negatives

Fix docker compose

v0.4.1

Fix docker-compose.yml

Burpsuite module, Dockerized test environments, support for ERB, Slim, Ruby eval, Tornado engines

• Add @jx6f 's Burpsuite module
• Add @jx6f 's Dockerized test environment
• Add ERB template engine
• Rewrite Plugin object
• Add Slim template engine
• Add Ruby eval module
• Support injection in URL
• Supports HTTP Proxy
• Add Tornado plugin test

Marko and doT engines support, detection method improvement

• Improve render detection method
• Skip TLS certificate check
• Add Marko Plugin
• Add doT Plugin

Dust.js engine and generic Python, JavaScript, PHP modules

• Exploitation of Dust.js template engine.
• Fix command execution payloads for Velocity template engine as suggested by @henshin.
• Exploitation of generic code injections for Python, JavaScript and PHP applications.
• Improve how to select the injection points via the command line.

Core, 8 supported engines, blind exploitation, code context escape

• Core
• Detection and exploitation plugins for Mako, Jinja2, Velocity, Freemarker, Jade, Nunjucks, Smarty, Twig
• Blind exploitation
• Code context escape