The BlackWidow is a python-based web application for collecting subdomains, URLs, dynamic parameters, email addresses and phone numbers from a website.
This project also includes the Inject-X fuzzer for scanning dynamic URLs and OWASP vulnerabilities.
Characteristics
- Automatically collect all URLs from one site
- Automatically collect all dynamic URLs and parameters from a site
- Automatically collect all subdomains from one site
- Automatically collect all phone numbers from one site
- Automatically collect all email addresses from one site
- Automatically collect all form URLs from one site
- Automatic scan / fuzz for common OWASP TOP vulnerabilities
- Automatically saves all data in sorted text files
Installation
git clone https://github.com/1N3/BlackWidow.git
cp blackwidow /usr/bin/blackwidow
cp injectx.py /usr/bin/injectx.py
pip install -r requirements.txtUse
u https://target.com – crawl target.com with 3 levels of depth.
-d target.com -l 5 – crawl the domain: target.com with 5 levels of depth.
-d target.com -l 5 -s y – crawl the domain: target.com with 5 levels of depth and fuzz all unique parameters for OWASP vulnerabilities.Application snapshots
Video guide
You can download the program from here.
Spread the news
Win Updates Disabler v1.4 free for everyone
Comment Policy:
IGuRu.gr does not post comments directly. Malicious comments, comments that include ads, or comments with insults are deleted without any notice. We do not adopt the views expressed by our readers.
Your comments will be displayed after approval by the administrators