awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
Hackmanit avatar

Hackmanit/Web-Cache-Vulnerability-Scanner

0
View on GitHub↗
1,180 Stars·159 Forks·Go·Apache-2.0·4 Aufrufe

Web Cache Vulnerability Scanner

This project is an automated security scanner designed to identify vulnerabilities within web caching layers. It functions as an HTTP protocol security tool that probes web infrastructure by manipulating request headers, parameters, and cookies to observe how servers handle and store content.

The scanner distinguishes itself through specialized cache behavior analysis, which targets specific flaws such as cache poisoning and cache deception. It incorporates a recursive crawler to map web application endpoints and utilizes configurable proxy routing to facilitate traffic inspection and debugging during the assessment process.

To support integration into automated workflows, the tool includes request throttling to manage network intensity and exports security findings into structured, machine-readable formats. The software is distributed as a command-line utility for use in security testing and penetration testing environments.

Features

  • Web Cache Poisoning - Automates the detection of cache poisoning and cache deception flaws by testing how web servers handle manipulated HTTP requests.
  • Cache Vulnerability Analyzers - Examines web cache configurations and tests for vulnerabilities like cache poisoning and deception by manipulating headers, parameters, and cookies.
  • HTTP Header Manipulators - Injects custom payloads into request headers and parameters to probe cache behavior and identify potential storage vulnerabilities.
  • Protocol - Analyzes how web caches handle manipulated requests to detect potential unauthorized content storage.
  • Security Testing Tools - Provides an automated scanner for discovering web application vulnerabilities through recursive crawling and targeted request manipulation.
  • Web Application Penetration Testing - Probes web infrastructure for security weaknesses by crawling endpoints and analyzing how caching mechanisms respond to custom headers and parameters.
  • Web Application Security Assessments - Integrates security testing into development pipelines to identify potential vulnerabilities in web applications before they reach production environments.
  • Traffic Proxying - Routes security scan traffic through external proxies to inspect HTTP requests and debug interactions with complex web caching layers.
  • Recursive Crawlers - Traverses web applications by parsing HTML content to discover and map reachable endpoints for comprehensive security assessment coverage.
  • Web Crawling - Traverses web applications to discover linked URLs, hidden paths, and target domains, expanding the total surface area covered during an automated security assessment.
  • Cache Analysis - CLI scanner for identifying web cache poisoning issues.

Star-Verlauf

Star-Verlauf für hackmanit/web-cache-vulnerability-scannerStar-Verlauf für hackmanit/web-cache-vulnerability-scanner

KI-Suche

Entdecke weitere awesome Repositories

Beschreibe in einfachen Worten, was du brauchst — die KI bewertet tausende kuratierte Open-Source-Projekte nach Relevanz.

Start searching with AI

Kuratierte Suchen mit Web Cache Vulnerability Scanner

Handverlesene Sammlungen, in denen Web Cache Vulnerability Scanner vorkommt.
  • Open-Source-Penetration-Testing-Tools
  • Automatisierte Schwachstellenscanner für Webanwendungen
  • Automatisierte DAST-Webschwachstellenscanner

Open-Source-Alternativen zu Web Cache Vulnerability Scanner

Ähnliche Open-Source-Projekte, sortiert nach der Anzahl der gemeinsamen Funktionen mit Web Cache Vulnerability Scanner.
  • zaproxy/zaproxyAvatar von zaproxy

    zaproxy/zaproxy

    15,293Auf GitHub ansehen↗

    OWASP ZAP is a dynamic application security testing tool and intercepting HTTP proxy used to find vulnerabilities in web applications. It functions as a penetration testing framework that enables both automated security scanning and manual security testing of running web services. The tool provides a suite of capabilities for analyzing web applications from the outside in, including the ability to capture and modify traffic between a browser and a target application. It is designed to integrate into DevSecOps pipelines to provide consistent security checks across different environments.

    Java
    Auf GitHub ansehen↗15,293
  • six2dez/reconftwAvatar von six2dez

    six2dez/reconftw

    7,226Auf GitHub ansehen↗

    reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the discovery, mapping, and monitoring of external digital assets. It operates as a modular tool-chain pipeline that coordinates a sequence of security tools to perform intelligence gathering and vulnerability scanning. The project distinguishes itself through a cloud-native deployment model that parallelizes scanning workloads across a fleet of remote VPS instances to bypass local resource constraints. It utilizes container-based environment isolation to ensure consistent executio

    Shellbug-bountybugbountybugbounty-tool
    Auf GitHub ansehen↗7,226
  • awesome-selfhosted/awesome-selfhostedAvatar von awesome-selfhosted

    awesome-selfhosted/awesome-selfhosted

    299,516Auf GitHub ansehen↗

    This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It dis

    awesomeawesome-listcloud
    Auf GitHub ansehen↗299,516
  • usestrix/strixAvatar von usestrix

    usestrix/strix

    20,138Auf GitHub ansehen↗

    Strix is an automated security research and vulnerability scanning platform that leverages language models to orchestrate complex security analysis tasks. It functions as a comprehensive framework for penetration testing and continuous security integration, allowing users to embed automated vulnerability research directly into development pipelines or execute it within isolated, containerized environments. The platform distinguishes itself through a multi-agent orchestration engine that coordinates specialized autonomous agents to perform parallel security assessments. By integrating LLM-agno

    Pythonagentsartificial-intelligencecybersecurity
    Auf GitHub ansehen↗20,138
Alle 30 Alternativen zu Web Cache Vulnerability Scanner anzeigen→

Häufig gestellte Fragen

Was macht hackmanit/web-cache-vulnerability-scanner?

This project is an automated security scanner designed to identify vulnerabilities within web caching layers. It functions as an HTTP protocol security tool that probes web infrastructure by manipulating request headers, parameters, and cookies to observe how servers handle and store content.

Was sind die Hauptfunktionen von hackmanit/web-cache-vulnerability-scanner?

Die Hauptfunktionen von hackmanit/web-cache-vulnerability-scanner sind: Web Cache Poisoning, Cache Vulnerability Analyzers, HTTP Header Manipulators, Protocol, Security Testing Tools, Web Application Penetration Testing, Web Application Security Assessments, Traffic Proxying.

Welche Open-Source-Alternativen gibt es zu hackmanit/web-cache-vulnerability-scanner?

Open-Source-Alternativen zu hackmanit/web-cache-vulnerability-scanner sind unter anderem: zaproxy/zaproxy — OWASP ZAP is a dynamic application security testing tool and intercepting HTTP proxy used to find vulnerabilities in… six2dez/reconftw — reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the… awesome-selfhosted/awesome-selfhosted — This project is a community-curated directory of open-source software designed for deployment in private server… usestrix/strix — Strix is an automated security research and vulnerability scanning platform that leverages language models to… dstotijn/hetty — Hetty is an HTTP intercepting proxy and web security research toolkit used to capture, inspect, and modify traffic… w-digital-scanner/w13scan — W13scan is an automated vulnerability assessment tool designed to identify security flaws in web applications through…