- Unzip the folder.
- Navigate to
/binaries
- Select the binary based off your operating system and platform, eg
masii-linux-amd64
for Linux operating systems that use AMD64 architecture. chmod +x masii-linux-amd64
It's important to note that not every architecture has been statically compiled. If the binary needed cannot be found. Install Go 1.13.8 and execute go build main.go
.
Prompt the help page via the following:
./masii-linux-amd64 -h
Below are some example usages:
Passing two Cookies, for two seperate user roles. A rate-limit of max 10 requests sent per second with the crawling output enabled and running the Headers security module.
./masii-linux-amd64 -u http://127.0.0.1:5000 -a "Cookie: session=eyJ1c2VyX2lkIjoxfQ.Y9lP9g.stwoa_Vlxa_xqajmvx_gVQBjujw, session=eyJ1c2VyX2lkIjoyfQ.ZAdbrQ.BK5tuLMylUpr1jZY1Ztv8TR2RhE" -s -t Admin,JOE -r 10 -c -m headers
- Detect Misconfigured Cross-Origin Resource Sharing Policy
- Detect Missing HTTP Security Headers
- Crawl any web applications and create a directed graph of the site
- Create multiple graphs based of user roles
- Highlight pages containing functionality that could be more likely to be vulnerable