Skip to content

infosecsecurity/Spaghetti

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Spaghetti - Web Application Security Scanner

build python license

logo

Description

Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations and misconfigurations. Spaghetti is built on python2.7 and can run on any platform which has a Python environment.

Installation

$ git clone https://github.com/m4ll0k/Spaghetti.git
$ cd Spaghetti 
$ pip install -r doc/requirements.txt
$ python spaghetti.py -h 

Features

  • Fingerprints

    • Server
    • Frameworks (CakePHP,CherryPy,Django,...)
    • Firewall (Cloudflare,AWS,Barracuda,...)
    • CMS (Drupal,Joomla,Wordpress)
    • OS (Linux,Unix,Windows,...)
    • Language (PHP,Ruby,Python,ASP,...)
  • Discovery:

    • Admin Panel
    • Apache Enumeration Users
    • Apache XSS
    • Apache ModStatus
    • Backdoors
    • Backup
    • Captcha
    • Common Directories
    • Common Files
    • Cookie Security
    • Multiple Index
    • Information Disclosure (Emails and Private IP)

Screenshots

screen1 screen2 screen3

About

Spaghetti - Web Application Security Scanner

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages