Yahoo! RCE Detector WebPwn3r Released.

 

 

logo_603012_a948usc9f_screen_display

Hello Everyone,

Today blog post is about WebPwn3r 🙂

For those who never heared about WebPwn3r, let me introduce it to you.

pwn3r
WebPwn3r is a Web Applications Security Scanner coded in Python to help Security Researchers to scan Multiple links in the same time against Remote Code/Command Execution & XSS Vulnerabilities.

You can extract the URL’s from Burp Suite and save it in list.txt then pass it to WebPwn3r.

You can also use your own crowler to gather URL’s for a certain domain or a random domains, and save it in list.txt then pass it to WebPwn3r.

In it’s Public Demo version, WebPwn3r got below Features:

1- Scan a URL or List of URL’s
2- Detect and Exploit Remote Code  Injection Vulnerabilities.
3- ~ ~ ~ Remote Command  Execution Vulnerabilities.
4- ~ ~ ~ Typical XSS Vulnerabilities.
5- Detect WebKnight WAF.
6- Improved Payloads to bypass Security Filters/WAF’s.
7- Finger-Print the backend Technologies.

The tool is under a heavy development 🙂

Demo Video for the tool:

Success Stories:

WebPwn3r

To download the Tool:

https://github.com/zigoo0/webpwn3r

10 Comments

  1. Mazen Gamal - April 14, 2014

    ِ aywa b2a mbroooook 🙂

  2. b0dach - April 15, 2014

    xxs unndefined error:
    [!] Now Scanning for Remote Code/Command Execution
    [!] Covering Linux & Windows Operating Systems
    [!] Please wait ….
    Traceback (most recent call last):
    File “scan.py”, line 42, in
    urls_or_list()
    File “scan.py”, line 32, in urls_or_list
    xss_func(url)
    NameError: global name ‘xss_func’ is not defined

  3. Eslam Gamal Khoga - April 16, 2014

    Great Job Man (Y)

  4. JxH - April 20, 2014

    [!] Fingerprinting the backend Technologies.
    Traceback (most recent call last):
    File “scan.py”, line 42, in
    urls_or_list()
    File “scan.py”, line 40, in urls_or_list
    rce_func(url)
    File “/pentest/web/webpwn3r-master/vulnz.py”, line 40, in rce_func
    headers_reader(url)
    File “/pentest/web/webpwn3r-master/headers.py”, line 28, in headers_reader
    opener = urllib.urlopen(url)
    File “/usr/lib64/python2.7/urllib.py”, line 87, in urlopen
    return opener.open(url)
    File “/usr/lib64/python2.7/urllib.py”, line 208, in open
    return getattr(self, name)(url)
    File “/usr/lib64/python2.7/urllib.py”, line 463, in open_file
    return self.open_local_file(url)
    File “/usr/lib64/python2.7/urllib.py”, line 477, in open_local_file
    raise IOError(e.errno, e.strerror, e.filename)
    IOError: [Errno 2] No such file or directory: ‘www.xxxxxx.org/article.php?id=1’

  5. AhmedT - April 20, 2014

    Great work is done by people who are not afraid to be great, keep going.

  6. zigoo - May 10, 2014

    @b0dach; did you try to edit the in the source code?
    @JxH: the error says that you don’t have URLLIB – python URL Library ! would you try to give it a shoot on another vm or try to re-install python?

    Thanks guys for your feedback.

  7. donbillhgates - May 16, 2014

    How to send POST requests?

  8. Jay Turla - May 23, 2014

    A very cool tool! Thanks for sharing this one and for making it open source 🙂

  9. tsar - October 1, 2015

    حقا ابداااااع يا ابن بلدي، لك تحياتي وإلى الأمام دائما
    It works very well for me on kali linux 2.0 & also on windows 7 ultimate x64

Leave a reply