Skip to content
Find anomalies using AnomalousCookie(s)!
Python
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
AnomalousCookie-v1.py
LICENSE
README.md
fuzz.txt

README.md

AnomalousCookie.py

+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+
|A|n|o|m|a|l|o|u|s| |C|o|o|k|i|e| - v1.0
+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+
Auto fuzz cookies to detect weaknesses (leading to additional vulnerabilities) and create screenshots.

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
INSTALL/PRE-REQS:
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

  1. Install python:
    apt-get install python

  2. Install pip!
    apt-get install python-pip pip install --upgrade pip

  3. Install needed Python libs:
    pip install selenium

  4. Install Geckodriver!
    wget https://github.com/mozilla/geckodriver/releases/download/v0.18.0/geckodriver-v0.18.0-linux64.tar.gz

  • tar zxvf geckodriver-v0.18.0-linux64.tar.gz
  • chmod 655 geckodriver
  • cp geckodriver /usr/bin/geckodriver

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
INSTALLING:
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

GIT CLONE the 'AnomalousCookie' script/framework:
git clone https://github.com/LostRabbitLabs/AnomalousCookie


-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
HOW TO USE:
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Usage:
./AnomalousCookie-v1.py -h // HELP!!
./AnomalousCookie-v1.py -1 "https://www.example.com" output // Append fuzz data before existing cookie payload data.
./AnomalousCookie-v1.py -2 "https://www.example.com" output // Overwrite existing cookie payload data.
./AnomalousCookie-v1.py -3 "https://www.example.com" output // Append fuzz data after existing cookie payload data.


Enable proxy by modifying the setting below:
proxy = "yes"

Screenshots will be saved in the 'output' directory. Enjoy!

-theLostRabbit

You can’t perform that action at this time.