Pickaxe is a fast and customizable security scan library which simplifies security testing for web applications like Adobe Experience Manager or API services. It can be plugged into a maven build to execute build-in checks or custom user provided security checks. Custom security checks can be defined via YAML files or a groovy based DSL.
Eclipse Public License 1.0
13
stars
3
forks
source link
Feature: Slurp repository output and detect hidden paths to probe #10
Some checks generate repository output and uncover hidden structures.
It could get interesting to use the recovered data to extend the list of potential targets in a second scan run or dynamically extend the list of targets.
Some checks generate repository output and uncover hidden structures. It could get interesting to use the recovered data to extend the list of potential targets in a second scan run or dynamically extend the list of targets.