Skip to content

This tool allows you to find ssti vulnerability with ease!

Notifications You must be signed in to change notification settings

faiyazahmad07/SSTI_DETECTOR

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

SSTI_DETECTOR

This tool tries to automate the process of ssti finding for you. It first send request to the url that you have supplied and if the payload is executed in the response then it will confirm the vulnerability.

INSTALLATION

  1. Clone this file in linux
  2. In terminal, type "sudo bash install.sh"
  3. Installation will be completed

USAGE

GET: python3 ssti.py -u --get 1

POST: python3 ssti.py -p --post 1 -p param1,param2

SCAN LIST OF URLS: python3 ssti.py -f .txt

Custom Payloads

We can add custom payloads in this tool. Just open the "payload.json" file and add your paylaod like: { "payload":"${7*7}", "output":"49" }

SCREENSHOT

ssti

Visit https://bepractical.tech for more such tools/content/services YouTube: https://youtube.com/c/BePracticalTech

About

This tool allows you to find ssti vulnerability with ease!

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published