Tuesday, August 25, 2020

Spaghetti: A Website Applications Security Scanner


About Spaghetti
   Author: m4ll0k   Spaghetti is an Open Source web application scanner, it is designed to find various default and insecure files, configurations, and misconfigurations. Spaghetti is built on Python 2.7 and can run on any platform which has a Python environment.

Spaghetti Installation:

Spaghetti's Features:
   Fingerprints:
  • Server:
  • Web Frameworks (CakePHP,CherryPy,...)
  • Web Application Firewall (Waf)
  • Content Management System (CMS)
  • Operating System (Linux,Unix,..)
  • Language (PHP,Ruby,...)
  • Cookie Security
   Discovery:
  • Bruteforce:Admin Interface
    Common Backdoors
    Common Backup Directory
    Common Backup File
    Common Directory
    Common FileLog File
  • Disclosure: Emails, Private IP, Credit Cards
   Attacks:
  • HTML Injection
  • SQL Injection
  • LDAP Injection
  • XPath Injection
  • Cross Site Scripting (XSS)
  • Remote File Inclusion (RFI)
  • PHP Code Injection
   Other:
  • HTTP Allow Methods
  • HTML Object
  • Multiple Index
  • Robots Paths
  • Web Dav
  • Cross Site Tracing (XST)
  • PHPINFO
  • .Listing
   Vulns:
  • ShellShock
  • Anonymous Cipher (CVE-2007-1858)
  • Crime (SPDY) (CVE-2012-4929)
  • Struts-Shock
Spaghetti Example:
python spaghetti --url example.com --scan 0 --random-agent --verbose


Read more

  1. Github Hacking Tools
  2. Pentest Tools Subdomain
  3. Hacker Tool Kit
  4. Hack Tools For Mac
  5. Hack Tools For Games
  6. Best Hacking Tools 2019
  7. Beginner Hacker Tools
  8. Hack App
  9. Pentest Tools For Windows
  10. Hacker Tools Mac
  11. Hacking Tools For Beginners
  12. Hacker Tools 2020
  13. New Hacker Tools
  14. Hack And Tools
  15. Hack Tool Apk
  16. Hacking Tools Pc
  17. Github Hacking Tools
  18. Hacking Tools Pc
  19. Best Hacking Tools 2019
  20. Hacker Tools For Pc
  21. Hacking Tools For Beginners
  22. Ethical Hacker Tools
  23. Hak5 Tools
  24. Pentest Tools Framework
  25. Hacker Hardware Tools
  26. Nsa Hacker Tools
  27. Best Pentesting Tools 2018
  28. What Is Hacking Tools
  29. Hackers Toolbox
  30. Pentest Tools For Ubuntu
  31. Tools 4 Hack
  32. Pentest Tools Kali Linux
  33. Pentest Tools Android
  34. Hacking Tools For Windows 7
  35. Pentest Tools Free
  36. Pentest Tools Find Subdomains
  37. Nsa Hack Tools
  38. Top Pentest Tools
  39. Hacking Tools And Software
  40. Hacker Tools Mac
  41. Hacking Tools For Windows Free Download
  42. Hacking Tools Pc
  43. Pentest Tools Nmap
  44. Hacker Tools Free
  45. Hacker Tools For Mac
  46. What Is Hacking Tools
  47. Hacking Tools For Kali Linux
  48. Github Hacking Tools
  49. Hacking Tools For Windows 7
  50. Hack Tools For Windows
  51. Kik Hack Tools
  52. New Hack Tools
  53. Underground Hacker Sites
  54. Hack Tools Github
  55. Hacking Tools Pc
  56. Blackhat Hacker Tools
  57. Hack Website Online Tool
  58. Hacker Tools Free Download
  59. Hack Tool Apk
  60. Hacking App
  61. Pentest Tools List
  62. Hacker Tools Mac
  63. Hacker Tools Online
  64. Termux Hacking Tools 2019
  65. Hacker Tools
  66. Pentest Tools Online
  67. Best Pentesting Tools 2018
  68. Hack Tool Apk No Root
  69. Hacking Tools Software
  70. Hacking Tools Kit
  71. Hack Tools For Mac
  72. Hack Tools Download
  73. Hacker Techniques Tools And Incident Handling
  74. Hacking Tools Download
  75. Hacking Tools For Beginners
  76. Hacking Tools For Beginners
  77. Hacking Tools Kit
  78. Install Pentest Tools Ubuntu
  79. Pentest Tools Review
  80. Pentest Tools Alternative

posted by Gopal @ 1:39 PM   0 comments

0 Comments:

Post a Comment

<< Home