Brutemap is an open source penetration testing tool that automates testing accounts to the site’s login page, based on Dictionary Attack.
With this, you no longer need to search for other bruteforce tools and you also no longer need to ask CMS What is this? only to find parameter forms, because it will do it automatically.
It is also equipped with an attack method that makes it easy for you to do account checking or test forms with the SQL injection bypass authentication technique.
Also Read – Pown Recon : A Powerful Target Reconnaissance Framework Powered By Graph Theory
Installation
It uses selenium to interact with the website. So, you need to install Web Driver for selenium first. See here. If you have installed the git package, you only need to clone the repository Git. Like this:
$ git clone https://github.com/brutemap-dev/brutemap.git
And, install the required modules:
$ pip install -r requirements.txt
For basic use:
$ python brutemap.py -t http://www.example.com/admin/login.php -u admin -p default
To display a list of available options:
$ python brutemap.py -h
garak checks if an LLM can be made to fail in a way we don't…
Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…
ADCFFS is a PowerShell script that can be used to exploit the AD CS container…
Tartufo will, by default, scan the entire history of a git repository for any text…
Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…
A data hoarder’s dream come true: bundle any web page into a single HTML file.…