( default "21 ")Ĭomma separated list of HTTP headers to use if empty a default set of headers are used. Specify a file containing list of hosts to scan.Ĭomma separated list of HTTP ports to scan per target. Specify a format string to use as the body of the HTTP request. 0ĭelay between subsequent requests for the same host to avoid overwhelming the host.Įmail to use for the receiving callback notifications. If you want to build the tool, you'll need Go >= 1.13. To use the tool, you can grab a binary from the Releases section as per your distribution and use it. If you have a custom callback server, you can definitely use it too! Installation & Usage LogMePwn works by making use of Canary Tokens, which in-turn provides email and webhook notifications to your preferred communication channel. Checkout the documentation and the tool below! Everything is multi-threaded and super fast (its written in Go).Custom callback server and payload support.Customized HTTP request body fuzzing (JSON, XML, etc).Support for multiple HTTP methods (GET, POST, PUT, DELETE, PATCH, etc).
Multi-protocol support: HTTP, IMAP, SSH, FTP, etc.Inherent support for automatic Canary Tokens generation using emails or webhooks.LogMePwn is a fully automated, multi-protocol, reliable, super-fast scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
0 kommentar(er)
