Malice v.5.2 scans for over 238 cgi vulnerabilities and uses anti-IDS tactics as discussed in RFP's famous whitepaper. Written in perl. Checks for known bugs and interesting directories.
8ccabde6d935c50454cdfa8e08465b2c79b64c11e8c2c0ab9f579093a0a8ca3bRiven is a CGI scanner which uses RFP anti-IDS tactics, flase browser / referer, and a perl/GTK interface.
019a8748eaa49d241b60bb6fe6e9a2db8eba78d1cebf024f19f604827be4eb21whisker v1.40 with native SSL support. Adds a -x option which uses the Net::SSLeay perl module and OpenSSL. Whisker is what I've dubbed a 'next generation' CGI scanner. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Can be used as a CGI.
b08da8795124f5cedfed471dc8c6fdce6b7cc819512817bb29e50ed6a5ac34ceThe Cum Security Toolkit v1.2 is a cgi/port scanner which checks for over 350 vulnerable CGI scripts and can implement 5 different Anti-IDS tactics. Features support for vhosts, wait times, fake X-forwarded-for: headers, and much more.
65d4e38e08388580ad5f6d1883da40bb1b4454eebda1f187608b30d654e4f7ceKamikaze.c is a simple and small HTTP scanning tool. It is customizable and takes its input from a config file.
418b784fdf1e8834347be67c80131df8757d6d3619bb44e0d0ac705c7f0d9aabTWWWscan is a Windows based www vulnerability scanner which looks for 227 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding and passive mode scan. Tested on win95 osr2 win98,win98se,win nt4,win 2k/Me.
b3134147cc552ad7ec3fdfbbc6073511ee8198b168ba683a9057c49a2b866abfCgichk is a web vulnerability scanner which automatically searches for a series of interesting directories and files on a given site. Instead of focusing on vulnerable CGI scripts, it looks for interesting and/or hidden directories such as logs, testing, secret, scripts, stats, restricted, code, robots.txt, etc.
6f6f598ec88ef7adaa2cf7926ee888b9597ebe691c24aafa0507df4f283fdcc4whisker is what I've dubbed a 'next generation' CGI scanner. It is Scriptable. It's a programming-ish language that is tailored to do lots of flexible web scanning. Very stealthy. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support. Can be used as a CGI.
173635b21dce7df421528d14e826b70fae03b6130717bd2979423c603175488aCgichk is a web vulnerability scanner which automatically searches for a series of interesting directories and files on a given site. Instead of focusing on vulnerable CGI scripts, it looks for interesting and/or hidden directories such as logs, testing, secret, scripts, stats, restricted, code, robots.txt, etc.
47937001a230d3e10896211f3c3d820eb3e969277cbc5a736ef051717fd564f3Cgichk is a web vulnerability scanner which automatically searches for a series of interesting directories and files on a given site. Instead of focusing on vulnerable CGI scripts, it looks for interesting and/or hidden directories such as logs, testing, secret, scripts, stats, restricted, code, robots.txt, etc.
fe61ba4fc109af1ce8b8f0d11f83d37e20ea7a6a432d55d0598d816065a538bfTWWWscan is a Windows based www vulnerability scanner which looks for 209 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding and passive mode scan. Tested on win95 osr2 win98,win98se,win nt4,win 2k.
e22757f754f09cec07ef92b15d7288a1bb562a9210beb649e6f3b972e9082ec0The CGI scanner by alt3kx_h3z finds 218 remote CGI vulnerabilities.
4c4dd5c84d18986b5cc3c312f994fbf87c9e8411d0c68c2b2fc9b7b3e855b5f8Malice v2 scans for over 150 cgi vulnerabilities and uses anti-IDS tactics as discussed in RFP's famous whitepaper. Written in perl.
f589f53839581a3b411cc4cf7e9490c78005c1d2451c46e022f3fd6328b68388Cgichk is a web vulnerability scanner which automatically searches for a series of interesting directories and files on a given site. Instead of focusing on vulnerable CGI scripts, it looks for interesting and/or hidden directories such as logs, testing, secret, scripts, stats, restricted, code, robots.txt, etc.
00f728b8d463d4ea4ae90a6b6889e0e1180310ca172ab39a1e41c54fbc690abcTSScgi.sh is a shell script which scans for vulnerable cgi scripts with the help of netcat.
66bd2915c38a890ba8c7d2a3ab7606b858d64e2c6618d0afe8f6502f11efa8e4TWWWscan v0.3 - Windows based www vulnerability scanner which looks for 186 www/cgi vulnerabilities . Displays http header, server info, and tries for accurate results. Now features anti-IDS url encoding. Tested on win95 osr2 win98,win98se,win nt4,win 2k.
1b22e13bcf68508b65896b00684805961b31aacc64bb2dbb8a86c2f3dec63c36CGI vulnerability scanner version 2.40. Checks for 407 CGI vulnerabilities.
e93bcd7ea10d2170002c754b4c1eb5c945196a68fad653c1c73a618cb6ad4e65Crazy Scan is a unix based scanner which scans for NT web vulnerabilties. Checks for about 30 cold fusion files, some cgi's, IIS / iisadmin scripts, msadc, and many other url's that indicate a remote vulnerability. Checks for 140 paths in all. Bug list available here.
ef4da4879810b3a2f4cf94e1bead2a85efcc7fc4d711dc3568c12d5124521a1cCGI vulnerability scanner version 2.00. Checks for 173 CGI vulnerabilities. Tested on linux, freebsd, and irix.
0431b7efce10152b2d33936031b456224a8417c3e9dd186c96dad485ee727526HTTP-XpsScanner scans a remote webserver for 77 vulnerable cgi scripts.
9f64d018277b2464ac86046ec1d3fc1aae140c378368b93e82d9c71a193f3becmd-webscan is a high quality CGI vulnerability scanner. It is well written, easily extensible, and has a few nifty options.
92e28833b15ad0ce6b9339a83e8b994deb37e1f6eba383e5fdfc64907ec4c28eVoidEye CGI scanner. Scans for 119 known vulnerabilities. Runs on: win9x, winNT, win2000. Features: Three IDS tactics, user can add his own holes, editing "exp.dat" in any text editor or via program interface, user can process a site list, editing it via the program interface or the file "servers.dat", scanner can work via a proxy, for more security. Multi-threaded and fast. This is the worlds first skinnable hacking tool.
76f2ae3fe5c3a5331f417b6a19443be87d426940c9dec5245d86e8018fc002b8Simple CGI scanner which works on Linux, OpenBSD, and others. Updated to fix y2k problem.
67283afef975011510958b99f1bfc3a7059b81d45720412147d8ce0cd3d535eeY2k fix for cgicgk-1_35, which would return false positives on any server with a date of 2000.
85000facff02b8aebee3f019526d12443276a547a4db48d22bc22c7438b71837whisker is what I've dubbed a 'next generation' CGI scanner. It is Scriptable. It's a programming-ish language that is tailored to do lots of flexible web scanning. Very stealthy. I've implemented anti-IDS checks into the scan. Includes over 200 checks. Lots of options. Reads in nmap output, files full of domains, or single host. Virtual host support. Proxy support.
aa01b002879dbb047ab54823efeedd8d3e423630310048e3b7a238055f3e9ab6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed