¶ Burp
BurpSuite Extension for performing scan via CLI. This little extension gives you ability to perform active or passive scan of provided URL. It can spider host prior scan, or check only the provided link. You can get report in two formats supported by burp suite: HTML or XML.
¶ Used facts:
Ajax request header manipulation (DOM-based)
ASP.NET debugging enabled
ASP.NET tracing enabled
ASP.NET ViewState without MAC enabled
Backup File/Directory detected
Base64-encoded data in parameter
Browser cross-site scripting filter disabled
Cacheable HTTPS response
Cleartext submission of password
Client-side HTTP parameter pollution
Client-side HTTP parameter pollution (reflected)
Client-side HTTP parameter pollution (stored)
Client-side JSON injection (DOM-based)
Client-side SQL injection (DOM-based)
Client-side template injection
Client-side XPath injection (DOM-based)
Content type incorrectly stated
Content type is not specified
Cookie manipulation (DOM-based)
Cookie scoped to parent domain
Cookie without HttpOnly flag set
Cookie without secure flag set
CORS misconfiguration vulnerability
Credit card number disclosure
Cross-domain POST
Cross-domain Referer leakage
Cross-domain script include
Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Scripting (XSS)
CSS injection (reflected)
CSS injection (stored)
Database connection string disclosed
Denial of service (DOM-based)
Deserialization of Untrusted Data
Detected robots.txt
Directory listing
Directory Traversal (Path Traversal)
Document domain manipulation (DOM-based)
DOM data manipulation (DOM-based)
DOM-based Cross-Site Scripting (XSS)
Duplicate cookies set
Email address disclosure
Extension generated issue
External service interaction
File path manipulation
File upload functionality
Flash cross-domain policy
Form action hijacking (reflected)
Form action hijacking (stored)
HTML does not specify charset
HTML uses unrecognized charset
HTML5 storage manipulation (DOM-based)
HTML5 web message manipulation (DOM-based)
HTTP PUT method is enabled
HTTP request smuggling
HTTP response header injection
HTTP TRACE method is enabled
Input returned in response (reflected)
IP address detected
LDAP injection
Link manipulation (DOM-based)
Link manipulation (reflected)
Link manipulation (stored)
Local File Inclusion (LFI)
Local file path manipulation (DOM-based)
Long redirection response
Mixed content
Multiple content types specified
Open Redirect
Open redirection (DOM-based)
Out-of-band resource load (HTTP)
Password field with autocomplete enabled
Password returned in later response
Password returned in URL query string
Password submitted using GET method
Password value set in cookie
Password value set in cookie
Path-relative style sheet import
PHP Code Injection Vulnerability
Private key detected
Referer-dependent response
Remote Code Execution (RCE)
Remote File Inclusion (RFI)
Request URL override
Server side include (SSI)
Server-Side Code Injection
Server-side JavaScript code injection
Server-Side Template Injection
Session token in URL
Shellshock vulnerability (Bashdoor)
Silverlight cross-domain policy
SMTP header injection
Social security numbers disclosed
Source code disclosure
Spoofable client IP address
SQL statement in request parameter
SQL-injection
Strict transport security not enforced
Suspicious input transformation
TLS certificate
Unencrypted communications
User agent-dependent response
Vulnerable to Clickjacking
Vulnerable to OS command injection
Web cache poisoning
WebSocket URL poisoning (DOM-based)
XML entity expansion
XML External Entity (XXE)
XML injection
XPath injection
¶ Facts screenshot:
example of a result of a burp scan integrated to Cryeye.
example of a solution of a result from previous screenshot.
¶ Screenshots of results:
¶ Category:
Security/Vulnerability Scanners
¶ Audit Tags:
Aggressive, CVE, Exploit, Old, Enumerate, Email, Crawling, RCE, Bruteforce, Time consuming, OS injection, RFI, LFI, SQLI, XSS, Code injection, Directory Traversal, Subdomains, Vulnerability identification
¶ DISCLAIMER:
This program is used for educational and ethical purposes only. I take no responsibility for any damages caused from using this program. By downloading and using this software, you agree that you take full responsibility for any damages and liability.