BLACK MASK: Web security tool to make fuzzing at HTTP, Beta

Saturday, September 16, 2017

Web security tool to make fuzzing at HTTP, Beta


0d1n

===== 0d1n is a tool for automating customized attacks against web applications.

You can do:


*brute force login and passwords in auth forms



*directory disclosure ( use PATH list to brute, and find HTTP status code )



*test to find SQL Injection and XSS vulnerabilities



*Options to load ANTI-CSRF token each request



*Options to use random proxy per request



*other functions...


Old Versions:

http://sourceforge.net/projects/odin-security-tool/files/?source=navbar



to run:

require libcurl-dev or libcurl-devel(on rpm linux based)

$ git clone https://github.com/CoolerVoid/0d1n/

need libcurl to run

$ sudo apt-get install libcurl-dev

if rpm distro

$ sudo yum install libcurl-devel

$ make

$./0d1n

Read the docs




https://github.com/CoolerVoid/0d1n