• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
KaliTut

KaliTut

Kali Linux tutorial and Linux system tips

  • Home
  • Raspberry Pi
  • Privacy Policy
  • About us

Spaghetti – Web Application Security Scanner v0.1.1

Last Updated on July 14, 2020 by Kalitut Leave a Comment

Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations, and misconfigurations.
Spaghetti is built on python2.7 and can run on any platform which has a Python environment.

Spaghetti

Features

Fingerprints:

  • Server
  • Web Frameworks (CakePHP,CherryPy,Django,…)
  • Web Application Firewall (Waf) (Cloudflare,AWS,Barracuda,…)
  • Content Management System (CMS) (Drupal,Joomla,Wordpress,Magento)
  • Operating System (Linux,Unix,Windows,…)
  • Language (PHP,Ruby,Python,ASP,…)

Discovery:
Scanning using options 1 :

  1. Apache
  2. Apache (mod_userdir)
  3. Apache (mod_status)
  4. Apache multiviews
  5. Apache xss
  6. Broken Auth./Session Management

Scanning using options 2 :

  1. Admin Panel
  2. Backdoors
  3. Backup Directory
  4. Backup File
  5. Common Directory
  6. Common File
  7. Log File
  8. Disclosure
  9. Emails
  10. IP
  11. Injection

Scanning using options 3 :

  1. HTML
  2. SQL
  3. LDAP
  4. XPath
  5. XSS
  6. RFI
  7. PHP Code
  8. Other

Scanning using options 4 :

  1. Allow Methods
  2. HTML Object
  3. Multiple Index
  4. Robots Paths
  5. Cookie Security
  6. Vulns

Scanning using options 5:

  1. ShellShock
  2. Struts-Shock

Installation

  •  git clone https://github.com/m4ll0k/Spaghetti.git
  •  cd Spaghetti 
  •  pip install -r requirements.txt
  •  python spaghetti.py –help

Tool Page at Github https://github.com/m4ll0k/Spaghetti

Filed Under: Penetration Testing Tools

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Follow us

  • Facebook
  • Twitter
  • YouTube

Categories

  • Android pentesting tools
  • Arduino
  • Books
  • Darknet
  • database
  • General
  • Github Tools
  • Hacking
  • Kali Linux
  • Linux
  • Linux Commands
  • Network Administrator
  • Penetration Testing
  • Penetration Testing Tools
  • PowerShell
  • Raspberry Pi
  • resources
  • Review
  • Termux
  • Tutorials
  • Ubuntu
  • Uncategorized
  • Video Tutorials
  • vmware
  • WiFi Adapter
  • WiFi Pentesting
  • Wireless Router
  • Wireshark

Recent Posts

  • Hijacked Wi-Fi? Thorough explanation of hacking techniques
  • Windows PowerShell tutorial for beginners
  • Learn to Hack Steps from Beginner to Hacker
  • PowerShell Tutorial – GUIDE introduction with basics
  • Top Hacking Tools
  • Home
  • About us
  • Privacy Policy
  • Affiliate disclaimer

Copyright © 2023