Saturday, August 22, 2020

Spaghetti: A Website Applications Security Scanner


About Spaghetti
   Author: m4ll0k   Spaghetti is an Open Source web application scanner, it is designed to find various default and insecure files, configurations, and misconfigurations. Spaghetti is built on Python 2.7 and can run on any platform which has a Python environment.

Spaghetti Installation:

Spaghetti's Features:
   Fingerprints:
  • Server:
  • Web Frameworks (CakePHP,CherryPy,...)
  • Web Application Firewall (Waf)
  • Content Management System (CMS)
  • Operating System (Linux,Unix,..)
  • Language (PHP,Ruby,...)
  • Cookie Security
   Discovery:
  • Bruteforce:Admin Interface
    Common Backdoors
    Common Backup Directory
    Common Backup File
    Common Directory
    Common FileLog File
  • Disclosure: Emails, Private IP, Credit Cards
   Attacks:
  • HTML Injection
  • SQL Injection
  • LDAP Injection
  • XPath Injection
  • Cross Site Scripting (XSS)
  • Remote File Inclusion (RFI)
  • PHP Code Injection
   Other:
  • HTTP Allow Methods
  • HTML Object
  • Multiple Index
  • Robots Paths
  • Web Dav
  • Cross Site Tracing (XST)
  • PHPINFO
  • .Listing
   Vulns:
  • ShellShock
  • Anonymous Cipher (CVE-2007-1858)
  • Crime (SPDY) (CVE-2012-4929)
  • Struts-Shock
Spaghetti Example:
python spaghetti --url example.com --scan 0 --random-agent --verbose


Related word


  1. Pentest Tools Android
  2. Computer Hacker
  3. Pentest Tools Windows
  4. Tools Used For Hacking
  5. Hacking Tools Software
  6. Best Pentesting Tools 2018
  7. Hak5 Tools
  8. Pentest Tools Apk
  9. Hack Tools For Windows
  10. Pentest Tools Open Source
  11. Hacking Tools Pc
  12. Hacking Tools Download
  13. Hack Tools Mac
  14. Hacking Tools Software
  15. Wifi Hacker Tools For Windows
  16. Hacker Security Tools
  17. Hacking Tools For Beginners
  18. Hack Tools 2019
  19. Hacker Tools Free
  20. Pentest Tools Nmap
  21. Wifi Hacker Tools For Windows
  22. Hacking Tools Hardware
  23. Hack Tools
  24. Pentest Tools Framework
  25. Computer Hacker
  26. Pentest Tools
  27. Pentest Tools For Mac
  28. Hack Tools 2019
  29. Hacker Tools Hardware
  30. Hacking Tools Kit
  31. Pentest Tools List
  32. Ethical Hacker Tools
  33. Hacker Tools Online
  34. Hack Tools
  35. Hacking Tools Hardware
  36. Hackers Toolbox
  37. Hacking Tools Name
  38. Hacker Tools Linux
  39. Underground Hacker Sites
  40. New Hack Tools
  41. Pentest Tools Website
  42. What Is Hacking Tools
  43. Install Pentest Tools Ubuntu
  44. Hacking Tools For Kali Linux
  45. Hack Tools Pc
  46. Best Hacking Tools 2019
  47. Hacking Tools 2020
  48. Hack Apps
  49. Pentest Tools For Ubuntu
  50. Hacking Tools For Kali Linux
  51. Hacker Tools For Mac
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)