Skip to content
/ L7-Inspector Public

A python based security auditing tool that can find various injection payloads from web server and application logs

License

GPL-3.0 license
7 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Sumeet-R/L7-Inspector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
L7-Inspector.py
L7-Inspector.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
payloads.zip
payloads.zip
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

L7-Inpector

A python based security auditing tool that can find various injection payloads from web server and application logs

Short working demonstration

https://www.youtube.com/watch?v=ycG3h_wuMTE

Description

The tool can be used to find various Layer7 injection payloads from any webserver logs when fed into its input. The payloads used as a conditional strings can be found in it's payload directory and can be further used in building SIEM,WAF,IDPS rules.

Currently following attack payloads are supported as follows:
1) SQL Injection
2) Cross-Site-Scripting
3) LDAP Injection
4) Directory Traversal
5) Command Injection
6) XPATH Injection
7) CRLF Injection

Installation on Linux

1) sudo apt-get install python3
2) sudo apt-get install python3-pip
3) cd ~
4) git clone https://github.com/Sumeet-R/L7-Inspector
5) cd L7-Inspector/
6) pip3 install -v -r requirements.txt
7) unzip payloads.zip -d ./payloads/
8) python3 L7-Inspector.py

About

A python based security auditing tool that can find various injection payloads from web server and application logs

Resources

Readme

License

GPL-3.0 license
Activity

Stars

7 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages