Finding issues¶
The search for issues is divided into two successive phases:
- Discovering entry points.
- Detecting issues.
Methods of discovering entry points¶
| Module name | Methods of discovering entry points |
|---|---|
static-crawler |
 Static web crawling and directory search |
dynamic-crawler |
Dynamic web crawling |
js-analyzer |
Analysis of client-side JavaScript code |
openapi-hars-generator |
Importing an OpenAPI specification |
waf-har-extractor |
Integration with WAF |
Detectable issues¶
In this section, the term “issue” is understood in a broad sense and also includes vulnerabilities and attacks.
| Module name | Detectable issues |
|---|---|
nuclei-runner |
Nuclei signatures |
powby2 |
Powby2 signatures |
sql-franziscanner |
SQL injection |
nosql-franziscanner |
NoSQL injection |
xxe-franziscanner |
XXE |
reflected-xss-franziscanner |
Reflected XSS |
cspp-franziscanner |
Client-Side Prototype Pollution |
dynamic-page-analyzer |
DOM XSS, Client-Side Prototype Pollution |
zvlom-serialize |
Controllable serialized data |
javalize-franziscanner |
Insecure deserialization in Java |
shell-injection-scanner |
Shell injection |
path-traversal-scanner |
Path Traversal, Remote File Inclusion |
bruteforce-franziscanner |
Insecure credentials |