XCODE Exploit: Vulnerable and Webshell Scanner.Once downloaded, extract all the files and run XCodeXploitScanner.exe, Dork Click It and a tool will collect links from Dork you enter and displays the list is. after displaying List, you will be able to conduct SQL injection vulnerability scanning / Local File Inclusion / Cross Site Scripting on the web that is in the list.
This tool will send the injection parameters to the web as’ – * /../../../../../../../../../../../../. . / .. / etc / passwd% 00 “> alert (” XXS Xcode Exploit Scanner Detected “).
If the Web has a bug then the status will appear:
SQLi Vulnerablitiy: www.target.com?blabla.php?=1234:
LFI Vulnerablity: www.target.com?blabla.php?=1234/../../../../../../../../../../../../. . / .. / etc / passwd% 00
XSS Vulnerablity: www.target.com?blabla.php?=1234 “> alert (” XXS Xcode Exploit Scanner Detected “)
At the status list is detected, you can click Open Vuln links with a web browser to display on your browser
This tool also adds webshell hunter, where you can search the web shell C99, R57, C100, ITsecteam_shell, b374k, which had been uploaded by the hackers.
Download
source
