OpenRedireX : Asynchronous Open redirect Fuzzer for Humans

OpenRedireX is a asynchronous open redirect fuzzer for humans.

Key Features

• Takes a url or list of urls and fuzzes them for Open redirect issues
• You can specify your own payloads in ‘payloads.txt’
• Shows Location header history (if any)
• Fast (as it is Asynchronous)
• umm thats it , nothing much !

Usage

Note : Use Python 3.7+ !

$ git clone https://github.com/devanshbatham/OpenRedireX
$ cd OpenRedireX
$ python3 -m venv env
$ source env/bin/activate
Note : The “FUZZ” is important and the url must be in double qoutes !
$ python3.7 openredirex.py -u “https://vulnerable.com/?url=FUZZ” -p payloads.txt –keyword FUZZ

For Single URL

$ python3.7 openredirex.py -u “https://vulnerable.com/?url=FUZZ” -p payloads.txt –keyword FUZZ

For List of URLs

$ python3.7 openredirex.py -l urls.txt -p payloads.txt –keyword FUZZ

Example

Credit: @NullPxl