w3bfukk0r 0.2

Posted by Nico Golde in hacks & code
Saturday, October 21. 2006

was just released a new w3bfukk0r version.

w3bfukk0r is a forced browsing tool, it basically scans webservers (HTTP/HTTPS) for a directory by using HTTP HEAD command and brute force mechanism based on a word list. Features:
HTTP/HTTPS(SSL) support
Banner grabbing
User-Agent faking
Proxy support (HTTP/S)
Reports found and non-existend directories

Note: Not all webservers are handling HTTP status codes correctly, so if the webserver doesn't care about RFCs the report generated by w3bfukk0r may include false positives. Maybe we'll find a good method to detect those false positives.

http://www.ngolde.de/download/w3bfukk0r-0.2.tar.gz

List of changes (CHANGELOG):

* w3bfukk0r 0.2 21.10.2006
- HTTP and HTTPS proxy support
- bug fixes
- it's now possible to specify more than just one URL to be scanned
- the man page has been rewritten
- a Doxyfile and doxygen source comments have been included
- support for the -p command line option has been dropped, use : instead
Comments (5) - Trackbacks (0)
(Page 1 of 1, totaling 1 entries)

Calendar

Back October '06 Forward
Mon Tue Wed Thu Fri Sat Sun
            1
2 3 4 5 6 7 8
9 10 11 12 13 14 15
16 17 18 19 20 21 22
23 24 25 26 27 28 29
30 31          

Quicksearch

Support



=>my website

Recent Entries

E-Plus GSM privacy/TMSI allocation leak
Thursday, October 11 2012
Exploiting the Ubiquisys/SFR femtocell webserver (wsal/shttpd/mongoose/yassl embedded webserver)
Wednesday, August 3 2011
So what happened recently...
Wednesday, April 6 2011
Sunday, February 6 2011
exim remote vulnerability
Thursday, December 9 2010
Will my Phone Show An Unencrypted Connection?
Wednesday, September 8 2010
smpCTF 2010 quals writeups
Sunday, August 8 2010
protocol design fail: MMS notification
Wednesday, July 28 2010
acrobat reader stealing my passwords
Tuesday, June 29 2010
UnrealIRCd backdoored
Saturday, June 12 2010

Archives

Syndicate This Blog

Categories



All categories

Tag cloud