/python-webpath-bruteforcer

Web path bruteforcer with a CLI. Built in python, also uses multi-threading for faster execution. Problem Statement given in CloudSEK placement hackathon.

Primary LanguagePython

Cloudsek Hackathon Made with Python Uses Multithreading

Problem Statement by CloudSEK: Build a minimal web path bruteforcer: Optimised memory, CPU usage

The CLI interface to the web path bruteforcer should accept these from the user:

  • webapp url
  • A file containing a list of webapp paths that need to be brute forced against the specified webapp url [Minimum paths: 1000]
    Sample wordlist: Link
  • List of success status code: (default: [200])

Sample Input:

Webapp url: https://www.github.com
Webapp paths: sample 5 lines out of 1000 of the input file wordlist.txt

  • admin
  • info
  • .git/config
  • .htaccess
  • backup.zip

Success status codes: [200, 302]

Usage:

python app.py [url] [word file] [status code]

Example

python app.py www.github.com file.txt 200 302

Note

For a NodeJS implementation of this solution, go to my repo : JavaScript Webpath Bruteforcer