The ManipulatorOpen-source parameter manipulation web scanner | |
Download |
The Manipulator Ranking & Summary
Advertisement
- License:
- GPL
- Publisher Name:
- Toby Clarke
- Publisher web site:
- http://code.google.com/u/101669555581023510632/
- Operating Systems:
- Mac OS X
- File Size:
- 19 KB
The Manipulator Tags
The Manipulator Description
The Manipulator is a free and open-source CLI base scanner for identifying parameter manipulation vulnerabilities, also known as Insecure Direct Object References or Authorization Bypass Through User-Controlled Key. In other words, The Manipulator can parse Burp logs searching for numeric parameters which it analyses for parameter manipulation flaws by submitting a range of similar but different numeric values and looking for differences in the responses. Moreover, The Manipulator parses a second burp log (i.e. from a different user) to identify potentially user-specific parameter values. The Manipulator is cross-platform and it works on Mac OS X, Windows and Linux.Detailed instructions on how to install and use the The Manipulator utility on your Mac are available HERE.Note: The Manipulator is beta, so don't use it in an environment that matters to you or anyone else. Also, don't use The Manipulator to scan hosts without the owner's permission.
The Manipulator Related Software