- Unzip the folder.
- Navigate to
/binaries - Select the binary based off your operating system and platform, eg
masii-linux-amd64for Linux operating systems that use AMD64 architecture. chmod +x masii-linux-amd64
It's important to note that not every architecture has been statically compiled. If the binary needed cannot be found. Install Go 1.13.8 and execute go build main.go.
Prompt the help page via the following:
./masii-linux-amd64 -hBelow are some example usages:
Passing two Cookies, for two seperate user roles. A rate-limit of max 10 requests sent per second with the crawling output enabled and running the Headers security module.
./masii-linux-amd64 -u http://127.0.0.1:5000 -a "Cookie: session=eyJ1c2VyX2lkIjoxfQ.Y9lP9g.stwoa_Vlxa_xqajmvx_gVQBjujw, session=eyJ1c2VyX2lkIjoyfQ.ZAdbrQ.BK5tuLMylUpr1jZY1Ztv8TR2RhE" -s -t Admin,JOE -r 10 -c -m headers- Detect Misconfigured Cross-Origin Resource Sharing Policy
- Detect Missing HTTP Security Headers
- Crawl any web applications and create a directed graph of the site
- Create multiple graphs based of user roles
- Highlight pages containing functionality that could be more likely to be vulnerable