Spaghetti: A Website Applications Security Scanner

About Spaghetti
   Author: m4ll0k

• Github: m4ll0k
• Twitter: m4ll0k

   Spaghetti is an Open Source web application scanner, it is designed to find various default and insecure files, configurations, and misconfigurations. Spaghetti is built on Python 2.7 and can run on any platform which has a Python environment.

Spaghetti Installation:

Spaghetti's Features:
   Fingerprints:

• Server:
• Web Frameworks (CakePHP,CherryPy,...)
• Web Application Firewall (Waf)
• Content Management System (CMS)
• Operating System (Linux,Unix,..)
• Language (PHP,Ruby,...)
• Cookie Security

   Discovery:

• Bruteforce:Admin Interface
  Common Backdoors
  Common Backup Directory
  Common Backup File
  Common Directory
  Common FileLog File
• Disclosure: Emails, Private IP, Credit Cards

   Attacks:

• HTML Injection
• SQL Injection
• LDAP Injection
• XPath Injection
• Cross Site Scripting (XSS)
• Remote File Inclusion (RFI)
• PHP Code Injection

   Other:

• HTTP Allow Methods
• HTML Object
• Multiple Index
• Robots Paths
• Web Dav
• Cross Site Tracing (XST)
• PHPINFO
• .Listing

   Vulns:

• ShellShock
• Anonymous Cipher (CVE-2007-1858)
• Crime (SPDY) (CVE-2012-4929)
• Struts-Shock

Spaghetti Example:
python spaghetti --url example.com --scan 0 --random-agent --verbose

Download Spaghetti

Related links

1. Pentest Tools Apk
2. Pentest Tools For Windows
3. World No 1 Hacker Software
4. Hacking Tools
5. What Is Hacking Tools
6. Hack App
7. Hacker Tools Windows
8. Physical Pentest Tools
9. Hacking Tools For Windows
10. Pentest Tools Find Subdomains
11. Pentest Tools Nmap
12. Install Pentest Tools Ubuntu
13. Easy Hack Tools
14. Pentest Reporting Tools
15. Hacking Tools Download
16. Hacking Tools
17. Pentest Tools Port Scanner
18. Pentest Tools For Mac
19. Hack Tools For Mac
20. Hacker Tools
21. Pentest Tools For Android
22. Hackrf Tools
23. Tools 4 Hack
24. Hak5 Tools