BlackWidow is a python-based web application for collecting subdomains, URLs, dynamic parameters, email addresses, and phone numbers from a web site.
This project also includes the Inject-X fuzzer for scanning dynamic URLs and OWASP vulnerabilities.
Character
- Automatically collect all URLs from one site
- Automatically collect all dynamic URLs and parameters from a site
- Automatically collect all subdomains from one site
- Automatically collect all phone numbers from one site
- Automatically collect all email addresses from one site
- Automatically collect all form URLs from one site
- Automatic scan / fuzz for common OWASP TOP vulnerabilities
- Automatically saves all data in sorted text files
Installation
git clone https://github.com/1N3/BlackWidow.git | |
cp blackwidow /usr/bin/blackwidow | |
cp injectx.py /usr/bin/injectx.py | |
pip install -r requirements.txt |
Use
in https://target.com crawl target.com with 3 levels of depth. | |
-d target.com -l 5 crawl the domain: target.com with 5 levels of depth. | |
-d target.com -l 5 -sy crawl the domain: target.com with 5 levels of depth and fuzz all unique parameters for OWASP vulnerabilities. |
Application snapshots
Video guide
You can download the program from here.
Read them Technology News from all over the world, with the validity of iGuRu.gr
Follow us on Google News
Comment Policy:
IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators