CoupDeWeb is a powerful and automated web vulnerability scanner designed for security researchers, developers, and penetration testers. This tool helps users scan websites for vulnerabilities like XSS and SQL Injection by retrieving historical URLs and filtering them through customizable patterns. It’s a fast, efficient, and user-friendly solution for finding potential loopholes in web applications.
- Historical URL Collection: Utilizes
waybackurls
to retrieve a site’s historical URLs. - Customizable Filters: Supports
gf
filters for various vulnerability patterns like XSS, SQLi, and more. - De-duplication: Ensures only unique URLs are presented with
urldedupe
. - User-Friendly: Provides interactive prompts for a streamlined scanning process.
- Optimized: Fast scanning with detailed results and the option to save vulnerable URLs.
- Go
- Gf
- waybackurls
- urldedupe
-
Clone the repository:
git clone https://github.com/AnonKryptiQuz/CoupDeWeb.git cd CoupDeWeb
-
Run the script:
bash CoupDeWeb.sh
Ensure you have Go and all the required tools installed.
-
Run the tool:
./CoupDeWeb.sh
-
Follow the prompts to input the website URL and select a filter.
-
The scanner will search for vulnerable URLs based on the selected filter and display the results.
-
Optionally, save the found URLs for future use.
- Educational Purposes Only: CoupDeWeb is intended for educational and research use. The tool should not be used for illegal or malicious activities. It is the user’s responsibility to ensure compliance with local laws and regulations.
This tool uses open-source projects, and we give full credit to the original developers:
- waybackurls by tomnomnom
- gf by tomnomnom
- urldedupe by ameenmaali
All tools are used under their respective open-source licenses.
Created by: AnonKryptiQuz