WWWGrep – OWASP Foundation Web Respository

0/5 No votes

Report this app

Description

WWWGrep – OWASP Foundation Web Respository

WWWGrep is a speedy search “grepping” mechanism that examines HTML parts by sort and permits centered (single), a number of (file primarily based URLs) and recursive (with respect to root area or not) searches to be carried out. Header names and values might also be recursively searched on this method. WWWGrep was designed to assist each breakers and builders to rapidly look at code bases beneath inspection, some use circumstances and examples are proven under.

Set up

git clone 
pip3 set up -r necessities.txt
python3 wwwgrep.py <arguments and parameters>

Dependencies (pip3 set up -r necessities.txt)

- Python 3.5+
- BeautifulSoup 4 
- UrlLib.parse
- requests_html
- argparse
- requests
- re
- os.path

Breakers

  • Rapidly find login pages by trying to find enter fields named “username” or “password” on a website an utilizing a recursion flag
  • Rapidly test headers for the usage of particular applied sciences
  • Rapidly find cookies and JWT tokens by search response headers
  • Use with a proxy device to automate recursion by a set hyperlinks quickly
  • Find all enter sinks on a web page (or website) by seek for enter fields and parameter processing symbology
  • Find all developer feedback on a web page to determine commented out code (or To Do’s)
  • Rapidly check consistency of website controls applied throughout recursion (headers, HSTS, CSP and so on)
  • Rapidly discover weak JavaScript code current in internet pages
  • Establish API tokens and entry keys current in web page code

Builders

  • Rapidly check a number of websites beneath administration for the usage of weak code
  • Rapidly check a number of websites beneath administration for the usage of weak frameworks/applied sciences
  • Discover websites which can share a standard codebase to find out the impression of flaws/vulnerabilities
  • Discover websites which share a standard authentication token (header auth token)
  • Discover websites which can include developer feedback for server hygiene functions
📁 Download Mirror 1 📁 Download Mirror 2 📁 EXTERNAL MIRROR
📁 Download Mirror 1 📁 Download Mirror 2 📁 EXTERNAL MIRROR

Versions

Version Size Requirements Date

Comments closed.