Spaghetti - Web Application Security Scanner


Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations and misconfigurations. Spaghetti is built on python2.7 and can run on any platform which has a Python environment.

Installation
$ git clone https://github.com/m4ll0k/Spaghetti.git
$ cd Spaghetti
$ pip install -r doc/requirements.txt
$ python spaghetti.py -h

Features
  • Fingerprints
    • Server
    • Frameworks (CakePHP,CherryPy,Django,...)
    • Firewall (Cloudflare,AWS,Barracuda,...)
    • CMS (Drupal,Joomla,Wordpress)
    • OS (Linux,Unix,Windows,...)
    • Language (PHP,Ruby,Python,ASP,...)
  • Discovery:
    • Admin Panel
    • Apache Enumeration Users
    • Apache XSS
    • Apache ModStatus
    • Backdoors
    • Backup
    • Captcha
    • Common Directories
    • Common Files
    • Cookie Security
    • Multiple Index
    • Information Disclosure (Emails and Private IP)

Screenshots






Source: www.kitploit.com
Spaghetti - Web Application Security Scanner Spaghetti - Web Application Security Scanner Reviewed by Dump3R H3id3gg3R on 6:48 AM Rating: 5