- Joined
- Jan 8, 2019
- Messages
- 56,623
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,456
- Points
- 2,313
- Credits
- 32,750
6 Years of Service
76%
0d1n Web security tool to make fuzzing at HTTP
0d1n is an Open Source web application bruteforcer and Fuzzer, its objective is to automate exhaustive tests to search anomalies. At another point of view, this anomaly can be a vulnerability, These tests can follow web parameters, files, directories, forms, and others
Why is this tool made in C language?
C has a high delay time for writing and debugging, but no pain no gain, it has fast performance, in addition, the C language is run at any architecture like Mips, ARM and others… in the future can follow mobile implementations. Other benefits of C is that it has a good and high profile to write optimizations if you want to write some lines in ASSEMBLY code with AES-NI or SiMD instructions, this is a good choice.
Why you don’t use POO ? in this project I follow the”KISS” principle: http://pt.wikipedia.org/wiki/Keep It Simple
C language has a lot of old school dudes like a kernel hacker.
Changelog v2.7
Fix CORS Bug in load HTML (Now uses local HTTPD)
Insert HTTPD with lib mongoose to load reports only for localhost
Refactor the core of code
Sort files by directory
Create install resources in make file (tested on debian based distro)
Change fork() to vfork() to gain performance
Bug fix in console
Read the readme.md
Fix output results, to create directory for each log in /opt/0d1n/view…
Remove wild pointer bugs