Bashter- Internet Crawler, Scanner, and Analyzer Framework (Shell-Script primarily based)
Bashter is a instrument for scanning a Internet-based Software. Bashter may be very appropriate for doing Bug Bounty or Penetration Testing.
It’s designed like a framework so you may simply add a script for detect vulnerability.
For Instance
To be extra highly effective, You may add one thing script (customized) like this:
- modules/type/yourscript.bash {WEB-URL} {SOURCECODE}
- modules/url/yourscript.bash {WEB-URL} {SOURCECODE}
- modules/header/yourscript.bash {WEB-URL} {SOURCECODE}
For the pattern, you may observe current scripts.
Disable Script
You solely want to alter the extension, for instance .bash => .bashx.
by Default:
- Internet Crawler
- Collect Enter Kind
- Detect Missconfigured CORS
- Detect lacking X-FRAME-OPTIONS (Clickjacking Potential)
- Detect Mirrored XSS through URL
- Detect Mirrored XSS through Kind
- Detect HTTP Splitting Response through CRLF Injection
- Detect Open Redirect
Examined on:
Linux, Ubuntu, Linux Debian
Easy methods to Run:
git clone https://github.com/zerobyte-id/Bashter.git
cd Bashter/
bash bashter.bash
Notes:
This instrument will eat a number of disk utilization, so do not forget to housekeep bashter-tempdata and scan-logs.
