Host Injector - A tool to quick check domains & sub domains for HOST HEADER INJECTION .
1.Clone the repo https://github.com/johnthebug/H0ST-1NJ3CT0R.git 2.Cd H0ST-1NJ3CT0R. 3.chmod +x H0ST-1NJ3CT0R. 4.Enter the File path of domain text file. 5.Enter the place to store output files. 6.Enter the URL to check with.
To Know More about Host Header Injection , refer these blogs 1.https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/ 2.https://portswigger.net/web-security/host-header/exploiting 3.https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/07-Input_Validation_Testing/17-Testing_for_Host_Header_Injection
Note : This tool is in Starting phase .I will update as soon as I tested the script with added features. If you want to enhance its working by adding new line or modifying new lines , Kindly create pull request.