Updates Commix v0.1b-ca075f9 : Automatic All-in-One OS Command Injection and Exploitation Tool.

Updates Commix v0.1b-ca075f9 : Automatic All-in-One OS Command Injection and Exploitation Tool.

changelog v0.1b-ca075f9:
* Minor fix on logs reporting.
* Added support regular preg_replace() injections via “/e” modifier.
* Added support for regular preg_replace() injections via “/e” modifier.
* Added support for HTML Charset and HTTP “Server” response-header reconnaissance (on verbose mode).
* Payloads on “tempfile-based” semiblind technique, have been replaced by new (more solid) ones.
* Added a “new-line” separator support, on “time-based” blind & “tempfile-based” semiblind techniques

Commix v0.1b-ca075f9

Commix v0.1b-ca075f9

Commix (short for [com]mand [i]njection e[x]ploiter) has a simple environment and it can be used, from web developers, penetration testers or even security researchers to test web applications with the view to find bugs, errors or vulnerabilities related to command injection attacks. By using this tool, it is very easy to find and exploit a command injection vulnerability in a certain vulnerable parameter or string. Commix is written in Python programming language.

Example screenCapture Updates commix-v-0.1b : Automated All-in-One OS Command Injection and Exploitation Tool.

Example screenCapture Updates commix-v-0.1b : Automated All-in-One OS Command Injection and Exploitation Tool. Has been Tested on: Kali Sana, Windows 7/8.1/10, Debian, Ubuntu, Arch-Linux

Disclaimer :
The tool is only for testing and academic purposes and can only be used where strict consent has been given. Do not use it for illegal purposes!!

Usage

Options:

Target:

Request:

Injection:

Enumeration :

Download : Master.zip | Clone Url
Source : https://github.com/stasinopoulos/ | Our post Before