Dinlas is a web scanner which can help developers find security vulnerabilities in their programs.
But you have to pay attention that this is a project for a course.
mukeran Personal Blog: https://blogs.mukeran.com am009 Tinywangxx
.
├── dictionary
│ ├── blind_sql_Payloads.txt
│ ├── common_directory.txt
│ ├── file_upload_payloads
│ │ ├── basic.jsp
│ │ ├── phpinfo.gif
│ │ ├── phpinfo.jpg
│ │ └── phpinfo.php
│ ├── weak_password.txt
│ └── weak_username.txt
├── lib
│ ├── __init__.py
│ ├── core
│ │ ├── __init__.py
│ │ ├── ArgumentParser.py
│ │ ├── Controller.py
│ │ ├── Dictionary.py
│ │ └── Reporter.py
│ ├── exceptions.py
│ ├── extensions
│ │ ├── __init__.py
│ │ ├── api.py
│ │ ├── default.py
│ │ ├── dynamic.py
│ │ └── static.py
│ ├── modules
│ │ ├── __init__.py
│ │ ├── CSRFDetector.py
│ │ ├── DirectorySearcher.py
│ │ ├── DynamicRequestFinder.py
│ │ ├── FileUploadDetector.py
│ │ ├── ReflectedXSSDetector.py
│ │ ├── SQLInjector.py
│ │ ├── SQLMapInjector
│ │ ├── SSTIDetector.py
│ │ ├── StaticRequestFinder.py
│ │ ├── StoredXSSDetector.py
│ │ └── WeakPasswordTester.py
│ └── utils
│ ├── __init__.py
│ └── random.py
├── templates
│ └── default.jinja2
├── dinlas.py - Main entry
├── requirements.txt
└── README.md
When you finished downloading the release, you have to do some preparations below:
- Install Python 3.8 and pip 19 or above;
- Run
pip install -r requirements.txt; - Download Google Chrome and its Chrome Driver;
- Download browsermob-proxy;
- Extract browsermob-proxy and Chrome Driver into a PATH path.
Now you can run ./dinlas.py start static <your_url>.