Home Forensics Tools Lorsrf – Tool to Bruteforce SSRF Parameter

Lorsrf – Tool to Bruteforce SSRF Parameter

November 2, 2021 Leave a Comment
Lorsrf - Tool to Bruteforce SSRF Parameter

lorsrf

Bruteforcing on Hidden parameters to find SSRF vulnerability using GET and POST Methods

NOTE

Installation

git clone https://github.com/knassar702/lorsrf
cd lorsrf
sudo pip3 install requests flask

Install NGROK

Steps :

Ngrok

  • run your ngrok ./ngrok http 9090
  • run server.py script and add ngrok port python3 server.py 9090
  • run lorsrf.py and add ngrok host using -s option

requestbin.com

How can i use it .?

cat YOUR_LIST.txt | python3 lorsrf.py -t URL_TARGET -s YOUR_HOST -w wordlist.txt

Click here to more usage demo

Download Lorsrf

You May Also Like

FFUF - Fast Web Fuzzing Tool

FFUF – Fast Web Fuzzing Tool

ParamSpider - Website Parameter Scraping Tool to find hidden parameters on website and web application

ParamSpider – Website Parameter Scraping Tool

XSStrike - Automated XSS tool for detection and exploit

XSStrike – Most Advanced XSS Scanner Tool

Assetfinder-Tool-to-Discover-Facing-Assets-like-subdomains-and-related-domain-for-Target-Domain

Assetfinder – Tool to Discover Facing Assets for Target Domain

Subfinder - Fast Passive Subdomain Enumeration and Scanner Tool

Subfinder – Fast Passive Subdomain Enumeration Tool

httpx - Tool To Screenshot and Extract Metadata From List of domains or hosts

HTTPX – Multi-purpose HTTP Toolkit

Leave a Reply

Your email address will not be published. Required fields are marked *

3 × three =