OWASP URL Checker

From OWASP
Revision as of 13:35, 23 June 2014 by Kait Disney-Leugers (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
[edit]

OWASP Project Header.jpg

OWASP URL Checker

OWASP URL Checker is...

Introduction

An open source scrip-table tool to scan websites for URL's which may lead to information divulging, exploits and common attack patterns.

Description

This tool will check a user defined website for potentially exploitable/ vulnerable URL's by comparing them against the URL extensions in the database, for instance if your target is http://google.com and in the database you have /wp-login.php it would then check if: http://google.com/wp-login.php is available on that site by checking the response. It's a form of of scanning to help you exploit and find weaknesses within the web server. The first time you run the tool it will create a database "restuls.txt" for you, and add a few URL parameters to get you started. But you can add to or change the database as much as you wish and therefore, it's as powerful as you'd like it to be. It gives you realtime feedback and the option to save all the successful results. You'll also be happy to know it's open source, and I've also included a win32 compiled version (requires .NET 3.5+). Video tutorial here http://youtu.be/yvc4q7YWpdo


Licensing

OWASP URL Checker is free to use. It is licensed under the GNU GPL v3 license, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


What is URL Checker?

OWASP URL Checker provides:

  • .exe (executable) and *.cpp (source)


Presentation

Link to presentation


Project Leader

Craig Fox


Related Projects

Ohloh

Quick Download

  • Link to page/download

Email List

Project Email List

News and Events

In Print

Classifications

New projects.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files CODE.jpg

Q1
A1
Q2
A2

Volunteers

URL Checker is developed by a worldwide team of volunteers. The primary contributors to date have been:

  • xxx
  • xxx

Others

  • xxx
  • xxx

As of June 2014, the priorities are:

Involvement in the development and promotion of URL Checker is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:

  • xxx
  • xxx


PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP URL Checker
Purpose: An open source scrip-table tool to scan websites for URL's which may lead to information divulging, exploits and common attack patterns.
License: GNU GPL v3 License
who is working on this project?
Project Leader(s):
  • Craig Fox
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: [owasp_url_checker@lists.owasp.org Mailing List Archives]
Project Roadmap: Not Yet Created
Key Contacts
  • Contact Craig Fox to contribute to this project
  • Contact Craig Fox to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
Not Yet Published
last reviewed release
Not Yet Reviewed


other releases