/WebHackingTools

Automatically install some web hacking/bug bounty tools.

Primary LanguageShellMIT LicenseMIT

WebHackingTools

Automatically install some web hacking/bug bounty tools for your VPS/hacking station.

O.S supported ✔️

  • Debian 11 x64

  • Kali Linux 2022.4 x64

  • Linux Mint 21 x64

  • Ubuntu 22.04 x64

asciicast

Installation

💻 Manual: laptop/VPS/other

apt-get update -y && apt-get install git -y
cd /tmp && git clone https://github.com/supr4s/WebHackingTools && cd WebHackingTools && ./installer.sh

🐳 Docker

A Docker version is available, see https://hub.docker.com/r/supr4s/webhackingtools

docker pull supr4s/webhackingtools
docker run --name webhackingtools -it supr4s/webhackingtools

To leave the container but leave it running:

ctrl + p and ctrl + q

To re-attach to the container:

docker attach webhackingtools

Available tools list

Subdomains enumeration

DNS resolver

HTTP probe

Visual recon

Network scanner

Web crawler

HTTP parameter

JavaScript hunting

Bypass 40X (new)

CORS tools (new)

Fuzzing tools

Prototype pollution (new)

LFI tools

SSRF tools

SSTI tools

API hacking tools

Vulns - XSS

Vulns - SQL Injection

Vulns - Scanner

CMS Scanner

Wordlists

Git hunting

Sensitive stuff finding

Useful tools

Note

  • Refer to the usage of the tools as most of them require configuration (especially for subdomains enumeration).
  • Please be careful with these tools and only use them on targets you have explicitly authorized.

N.B : * = added in the last update

** For Nikto and Debian 10, you need to have the non-free contrib sources in addition. e.g :

deb http://deb.debian.org/debian/ buster main contrib non-free
deb-src http://deb.debian.org/debian/ buster main contrib non-free