This tool functions in many ways enabling you to harness the power of
what’s already indexed by the search engines and analyse your target
for potential exploits, capture E-mails and URLs with internal custom
validation for each target/URL found.
Also supports external commands for exploitation, so if your scan/search finds a potential validated SQL Injection vulnerability, you could have INURLBR directly launch sqlmap or your tool of choice.
Also supports external commands for exploitation, so if your scan/search finds a potential validated SQL Injection vulnerability, you could have INURLBR directly launch sqlmap or your tool of choice.
Features
- Generate IP ranges or random_ip and analyse the targets.
- Customization of HTTP-HEADER, USER-AGET, URL-REFERENCE.
- Execute external commands to exploit certain targets.
- Generate random dorks or set dorks file.
- Option to set proxy manually or from a file list.
- Supports both SOCKS and HTTP proxies
- Set time for proxy change when using random.
- Supports TOR to randomise IP.
- Debug processed URLs & HTTP requests.
- Can send vulnerable URLs to an IRC chat room.
- Support for GET / POST => SQLI, LFI, LFD injection exploits.
- Filter and validate based on regexp.
- Extraction of e-mail addresses and URLs.
- Validation using HTTP response codes.
- Search pages based on strings file.
- Exploits commands manager.
- Paging limiter on search engines.
- Beep sound when a vulnerability is found.
- Use text file as a data source for URLs to test.
- Find personalized strings in return values of the tests.
- Checks and validates for Shellshock.
- File validation for the WordPress config file – wp-config.php.
- Can execute a sub-process for validation.
- Validate syntax errors for databases and programming.
- Data encryption as native parameter.
- Random Google host.
- Scan port.
Search Engines/Methods Supported
- Google / (CSE) generic random / API
- Bing
- Yahoo! BR
- Ask
- HAO123 Br
- Google (API)
- Lycos
- UOL Br
- Yahoo! US
- Sapo
- Dmoz
- Gigablast
- Never
- Baidu BR
- Andex
- Zoo
- Hotbot
- Zhongsou
- Hksearch
- Ezilion
- Sogou
- DuckDuckGo
- Boorow
- Google (CSE) generic random
- Tor Find
- Elephant
- Torsearch
- Wikileaks
- OTN
- Shodan
Errors Checked For
- Java Infinitydb
- LFI
- Zimbra mail
- Zend framework
- MariaDB
- MySQL
- Jbossweb
- Microsoft
- ODBC
- PostgreSQL
- PHP
- WordPress
- Web Shell
- JDBC
- ASP
- Oracle
- DB2
- CFM
- LUA
|
https://github.com/googleinurl/SCANNER-INURLBR.git inurlbr
|
Please bro provide command for using this tool INURL.
ReplyDelete