Webbies Toolkit – Web Recon & Enumeration Tools


Webbies Toolkit is a pair of tools that enable asynchronous web recon & enumeration including SSL detection, banner grabbing and presence of login forms.

Webbies Toolkit - Web Recon & Enumeration Tools

Webbies Features

  • Respects scope (including redirects)
  • Uses same DNS resolver for enumeration and retrieval by patching aiohttp TCPConnector
  • Cached DNS requests by wrapping aiodns
  • SSLContext can be modified for specific SSL versions
  • Outputs a simple CSV for easy grep-fu of results
  • Asynchronous http(s) and dns
  • Specialized bingapi search on ip and hostname given bing key

FDB Features

  • Fast directory/web application eumeration
  • Dir bust numerous hosts simultaneously and save all results in a directory in a CSV file per host
  • Task control to limit requests per second
  • Multiple progress bars for current status on running FDB’s
  • Include word list used, target, extensions, and start and stop times in CSV file
  • 404 detection based on response structure and content

Usage

You can download Webbies Toolkit here:

webbies-master.zip

Or read more here.

Posted in: Hacking Tools, Networking Hacking Tools

,


Latest Posts:


tko-subs - Detect & Takeover Subdomains With Dead DNS Records tko-subs – Detect & Takeover Subdomains With Dead DNS Records
tko-subs is a tool that helps you to detect & takeover subdomains with dead DNS records, this could be dangling CNAMEs point to hosting services and more.
Arcane - Tool To Backdoor iOS Packages (iPhone ARM) Arcane – Tool To Backdoor iOS Packages (iPhone ARM)
Arcane is a simple script tool to backdoor iOS packages (iPhone ARM) and create the necessary resources for APT repositories.
SharpHose - Asynchronous Password Spraying Tool SharpHose – Asynchronous Password Spraying Tool
SharpHose is an asynchronous password spraying tool in C# for Windows environments that takes into consideration fine-grained password policies and can be run over Cobalt Strike's execute-assembly.
Axiom - Pen-Testing Server For Collecting Bug Bounties Axiom – Pen-Testing Server For Collecting Bug Bounties
Project Axiom is a set of utilities for managing a small dynamic infrastructure setup for bug bounty, basically a pen-testing server out of the box with 1-line.
Quasar RAT - Windows Remote Administration Tool Quasar RAT – Windows Remote Administration Tool
Quasar is a fast and light-weight Windows remote administration tool coded in C#. Used for user support through day-to-day administrative work to monitoring.
Pingcastle - Active Directory Security Assessment Tool Pingcastle – Active Directory Security Assessment Tool
PingCastle is a Active Directory Security Assessment Tool designed to quickly assess the Active Directory security level based on a risk and maturity framework.


Comments are closed.