0d1n – Web HTTP Fuzzing Tool

The New Acunetix V12 Engine


0d1n is an open source web HTTP fuzzing tool and bruteforcer, its objective is to automate exhaustive tests and search for anomalies (you know, vulnerabilities). 0d1n can increase your productivity following web parameters, files, directories, forms and other things.

0d1n - Web HTTP Fuzzing Tool

Od1n is written in C and uses libcurl for performance.

Features

Some of the features of 0d1n are:

  • Brute force passwords in auth forms
  • Directory disclosure (use PATH list to brute, and find HTTP status code)
  • Test list on input to find SQL Injection and XSS vulnerabilities

Requirements

To run 0d1n requires:

  • GCC
  • make
  • libcurl –
  • Current version tested only Unix Like systems (Linux, MacOS and *BSD)

For examples on usage and stuff check the presentation here: 0d1n Web Hacking Tool [PDF]

You can download Od1n here:

0d1n-master.zip

Or read more here.

Posted in: Hacking Tools, Web Hacking

, ,


Latest Posts:


RidRelay - SMB Relay Attack For Username Enumeration RidRelay – SMB Relay Attack For Username Enumeration
RidRelay is a Python-based tool to enumerate usernames on a domain where you have no credentials by using a SMB Relay Attack with low privileges.
NetBScanner - NetBIOS Network Scanner NetBScanner – NetBIOS Network Scanner
NetBScanner is a NetBIOS network scanner tool that scans all computers in the IP addresses range you choose, using the NetBIOS protocol.
Metta - Information Security Adversarial Simulation Tool Metta – Information Security Adversarial Simulation Tool
Metta is an information security preparedness tool in Python to help with adversarial simulation and assess security defense preparation and alerts.
Powershell-RAT - Gmail Exfiltration RAT Powershell-RAT – Gmail Exfiltration RAT
Powershell-RAT is a Python-based Gmail exfiltration RAT that can be used a Windows backdoor to send screenshots or other data as an e-mail attachment.
SCADA Hacking - Industrial Systems Woefully Insecure SCADA Hacking – Industrial Systems Woefully Insecure
It seems like SCADA hacking is still a topic in hacker conferences, and it should be with SCADA systems still driving power stations, manufacturing plants etc.
airgeddon - Wireless Security Auditing Script airgeddon – Wireless Security Auditing Script
Airgeddon is a Bash powered multi-use Wireless Security Auditing Script for Linux systems with an extremely extensive feature list.


Comments are closed.