Awesome
PENTOL
PENTOL - Pentester Toolkit is built as a plugin for the Fiddler HTTP debugging proxy.
<img src="PENTOL.PNG" width="55%"></img>
Features
CORS DETECTED Cross-Origin Resource Sharing
CRLF DETECTED HTTP response splitting
JSON DETECTED
CSP DETECTED
Headers DETECTED (X-Frame-Options)
Modif
Press Key CTRL + R or Rules > Customize Rules...
Search m_Gojek and m_Tokopedia
//oSession.utilDecodeResponse(); //oSession.utilReplaceInResponse('36359','401514252112'); //oSession.utilReplaceInResponse(' search text ' , 'reaplace' );
USAGE
- Install Fiddler2
- Open Fiddler2
- Press Key
CTRL+RorRules>Customize Rules... - Copy all script SampleRules.js
- Press Key
CTRL+SforSave
Check tools in Rules TAB
Credits
- Thanks to allah
- Eka Syahwan (Creator) bugrecon / H1 / bugcrowd
- Edo Maland (Powerstager) https://github.com/Screetsec
- Jack Wilder admin in http://www.linuxsec.org
Disclaimer
Note: modifications, changes, or changes to this code can be accepted, however, every public release that uses this code must be approved by writing this tool (Eka S)