Skip to content
/ vulnjack Public

VulnJack is a Linux tool that detects clickjacking vulnerabilities on websites. It identifies security risks where malicious sites use invisible iframes to trick users into clicking hidden elements, helping web developers secure their applications and protect users from unintended actions.

License

GPL-3.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

HaxKit/vulnjack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
vulnjack
vulnjack
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
MANIFEST.in
MANIFEST.in
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
setup.py
setup.py
 
 

Repository files navigation

VulnJack

VulnJack is a command-line tool that scrapes a given website and checks for the presence of the Strict-Transport-Security header in the URLs found on the site. It helps identify if the security header is missing or present, improving the security posture of websites.

Features

  • Scrapes URLs from a specified website.
  • Checks if the Strict-Transport-Security header is present for each URL.
  • Outputs the result for each URL, indicating whether the header is missing or present.

Installation

  1. Clone the repository:
git clone https://github.com/HaxKit/vulnjack.git
  1. Install the required dependencies:
pip install -r requirements.txt
python3 install.py

Usage

To run VulnJack, use the following command:

vulnjack --url <website_url>

Example

vulnjack.py --url https://example.com

This will scrape all the URLs from https://example.com and check for the presence of the Strict-Transport-Security header.

Requirements

  • Python 3.x
  • scraply library (for scraping URLs)
  • vulheader library (for header checking)

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

VulnJack is a Linux tool that detects clickjacking vulnerabilities on websites. It identifies security risks where malicious sites use invisible iframes to trick users into clicking hidden elements, helping web developers secure their applications and protect users from unintended actions.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages