awesome-repositories.com
Blog
awesome-repositories.com

Descubre los mejores repositorios open-source con nuestra búsqueda potenciada por IA.

ExplorarBúsquedas curadasAlternativas open-sourceSoftware autohospedableBlogMapa del sitio
ProyectoAcerca deCómo clasificamosPrensaServidor MCP
Aviso legalPrivacidadTérminos
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
Hackmanit avatar

Hackmanit/Web-Cache-Vulnerability-Scanner

0
View on GitHub↗
1,180 estrellas·159 forks·Go·Apache-2.0·4 vistas

Web Cache Vulnerability Scanner

Este proyecto es un escáner de seguridad automatizado diseñado para identificar vulnerabilidades dentro de las capas de caché web. Funciona como una herramienta de seguridad del protocolo HTTP que sondea la infraestructura web manipulando encabezados de solicitud, parámetros y cookies para observar cómo los servidores manejan y almacenan el contenido.

El escáner se distingue por un análisis especializado del comportamiento de la caché, que apunta a fallos específicos como el envenenamiento de caché (cache poisoning) y el engaño de caché (cache deception). Incorpora un rastreador recursivo para mapear endpoints de aplicaciones web y utiliza enrutamiento de proxy configurable para facilitar la inspección y depuración del tráfico durante el proceso de evaluación.

Para apoyar la integración en flujos de trabajo automatizados, la herramienta incluye limitación de solicitudes (throttling) para gestionar la intensidad de la red y exporta los hallazgos de seguridad a formatos estructurados legibles por máquina. El software se distribuye como una utilidad de línea de comandos para su uso en entornos de pruebas de seguridad y pruebas de penetración.

Features

  • Web Cache Poisoning - Automates the detection of cache poisoning and cache deception flaws by testing how web servers handle manipulated HTTP requests.
  • Cache Vulnerability Analyzers - Examines web cache configurations and tests for vulnerabilities like cache poisoning and deception by manipulating headers, parameters, and cookies.
  • HTTP Header Manipulators - Injects custom payloads into request headers and parameters to probe cache behavior and identify potential storage vulnerabilities.
  • Protocol - Analyzes how web caches handle manipulated requests to detect potential unauthorized content storage.
  • Security Testing Tools - Provides an automated scanner for discovering web application vulnerabilities through recursive crawling and targeted request manipulation.
  • Web Application Penetration Testing - Probes web infrastructure for security weaknesses by crawling endpoints and analyzing how caching mechanisms respond to custom headers and parameters.
  • Web Application Security Assessments - Integrates security testing into development pipelines to identify potential vulnerabilities in web applications before they reach production environments.
  • Traffic Proxying - Routes security scan traffic through external proxies to inspect HTTP requests and debug interactions with complex web caching layers.
  • Recursive Crawlers - Traverses web applications by parsing HTML content to discover and map reachable endpoints for comprehensive security assessment coverage.
  • Web Crawling - Traverses web applications to discover linked URLs, hidden paths, and target domains, expanding the total surface area covered during an automated security assessment.
  • Cache Analysis - CLI scanner for identifying web cache poisoning issues.

Historial de estrellas

Gráfico del historial de estrellas de hackmanit/web-cache-vulnerability-scannerGráfico del historial de estrellas de hackmanit/web-cache-vulnerability-scanner

Búsqueda con IA

Explora más repositorios increíbles

Describe lo que necesitas en lenguaje sencillo: la IA clasifica miles de proyectos open-source curados por relevancia.

Start searching with AI

Colecciones destacadas con Web Cache Vulnerability Scanner

Colecciones seleccionadas manualmente donde aparece Web Cache Vulnerability Scanner.
  • Herramientas de pruebas de penetración de código abierto
  • Escáneres automatizados de vulnerabilidades en aplicaciones web
  • Escáneres DAST automatizados de vulnerabilidades web

Alternativas open-source a Web Cache Vulnerability Scanner

Proyectos open-source similares, clasificados según cuántas características comparten con Web Cache Vulnerability Scanner.
  • zaproxy/zaproxyAvatar de zaproxy

    zaproxy/zaproxy

    15,293Ver en GitHub↗

    OWASP ZAP is a dynamic application security testing tool and intercepting HTTP proxy used to find vulnerabilities in web applications. It functions as a penetration testing framework that enables both automated security scanning and manual security testing of running web services. The tool provides a suite of capabilities for analyzing web applications from the outside in, including the ability to capture and modify traffic between a browser and a target application. It is designed to integrate into DevSecOps pipelines to provide consistent security checks across different environments.

    Java
    Ver en GitHub↗15,293
  • six2dez/reconftwAvatar de six2dez

    six2dez/reconftw

    7,226Ver en GitHub↗

    reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the discovery, mapping, and monitoring of external digital assets. It operates as a modular tool-chain pipeline that coordinates a sequence of security tools to perform intelligence gathering and vulnerability scanning. The project distinguishes itself through a cloud-native deployment model that parallelizes scanning workloads across a fleet of remote VPS instances to bypass local resource constraints. It utilizes container-based environment isolation to ensure consistent executio

    Shellbug-bountybugbountybugbounty-tool
    Ver en GitHub↗7,226
  • awesome-selfhosted/awesome-selfhostedAvatar de awesome-selfhosted

    awesome-selfhosted/awesome-selfhosted

    299,516Ver en GitHub↗

    This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It dis

    awesomeawesome-listcloud
    Ver en GitHub↗299,516
  • usestrix/strixAvatar de usestrix

    usestrix/strix

    20,138Ver en GitHub↗

    Strix is an automated security research and vulnerability scanning platform that leverages language models to orchestrate complex security analysis tasks. It functions as a comprehensive framework for penetration testing and continuous security integration, allowing users to embed automated vulnerability research directly into development pipelines or execute it within isolated, containerized environments. The platform distinguishes itself through a multi-agent orchestration engine that coordinates specialized autonomous agents to perform parallel security assessments. By integrating LLM-agno

    Pythonagentsartificial-intelligencecybersecurity
    Ver en GitHub↗20,138
Ver las 30 alternativas a Web Cache Vulnerability Scanner→

Preguntas frecuentes

¿Qué hace hackmanit/web-cache-vulnerability-scanner?

Este proyecto es un escáner de seguridad automatizado diseñado para identificar vulnerabilidades dentro de las capas de caché web. Funciona como una herramienta de seguridad del protocolo HTTP que sondea la infraestructura web manipulando encabezados de solicitud, parámetros y cookies para observar cómo los servidores manejan y almacenan el contenido.

¿Cuáles son las características principales de hackmanit/web-cache-vulnerability-scanner?

Las características principales de hackmanit/web-cache-vulnerability-scanner son: Web Cache Poisoning, Cache Vulnerability Analyzers, HTTP Header Manipulators, Protocol, Security Testing Tools, Web Application Penetration Testing, Web Application Security Assessments, Traffic Proxying.

¿Qué alternativas de código abierto existen para hackmanit/web-cache-vulnerability-scanner?

Las alternativas de código abierto para hackmanit/web-cache-vulnerability-scanner incluyen: zaproxy/zaproxy — OWASP ZAP is a dynamic application security testing tool and intercepting HTTP proxy used to find vulnerabilities in… six2dez/reconftw — reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the… awesome-selfhosted/awesome-selfhosted — This project is a community-curated directory of open-source software designed for deployment in private server… usestrix/strix — Strix is an automated security research and vulnerability scanning platform that leverages language models to… dstotijn/hetty — Hetty is an HTTP intercepting proxy and web security research toolkit used to capture, inspect, and modify traffic… w-digital-scanner/w13scan — W13scan is an automated vulnerability assessment tool designed to identify security flaws in web applications through…