Brutemap is an open source penetration testing tool that automates testing accounts to the site's login page, based on Dictionary Attack. With this, you no longer need to search for other bruteforce tools and you also no longer need to ask CMS What is this? (only to find parameter forms), because brutemap will do it automatically. Brutemap is also equipped with an attack method that makes it easy for you to do account checking or test forms with the SQL injection bypass authentication technique.
Installation
Brutemap uses selenium to interact with the website. So, you need to install Web Driver for selenium first. See here. If you have installed the git
package, you only need to clone the repository Git. Like this:
$ git clone https://github.com/brutemap-dev/brutemap.git
And, install the required modules:
$ pip install -r requirements.txt
Usage
For basic use:
$ python brutemap.py -t https://www.example.com/admin/login.php -u admin -p abc, root, default
To display a list of available options:
$ python brutemap.py -h
For more information about available options, you can visit the User's manual.
Attack method
Author
- BlogSeptember 23, 2023Leveraging AI in Cybersecurity: Transforming Threat Detection, Prevention, and Beyond
- BlogAugust 24, 2023How Simply Browsing The Internet Gives Scammers An Advantage – And What You Can Do About It
- BlogJuly 1, 2022WEF - WiFi Exploitation Framework
- BlogMay 19, 2022Osmedeus is a Workflow Engine for Offensive Security