Jaeles - The Swiss Army knife for automated Web Application Testing

Jaeles is a powerful, flexible and easily extensible framework written in Go for building your own Web Application Scanner. Installation Download precompiled version here. If you have a Go environment, make sure you have Go >= 1.13 with Go Modules enable and run the following command. GO111MODULE=on go get -u github.com/jaeles-project/jaeles Please visit the Official Documention for more details. Note: Checkout Signature Repo for base signature and passive signature. Usage More usage here Example commands. jaeles scan -s 'jira' -s 'ruby' -u target.com jaeles scan -c 50 -s 'java' -x 'tomcat' -U list_of_urls.txt jaeles scan -c 50 -s '/tmp/custom-signature/.*' -U list_of_urls.txt cat urls.txt | grep 'interesting' | jaeles scan -c 50 -s 'fuzz/.*' -U list_of_urls.txt --proxy https://127.0.0.1:8080 jaeles server --verbose -s sqli Showcases Apache server status Tableau Server Unauthenticated DOM XSS (CVE-2019-19719) Rabbitmq Management Default Credentials Jenkins Unauthenticated Gitlab XSS (CVE-2020-2096) More showcase can be found here Burp Integration Plugin....