概要
Search websites for git repos, exposed config files, and more as you browse.
Bishop is a vulnerability scanner that searches websites in the background while you browse, looking for exposed version control systems, misconfigured administrative tools, and more. With a whitelisting regex system, you can easily restrict this tool to hosts that you are authorized to scan. It works by searching for files with a given path on the current URL path and all parent paths, applying given regex to the results to check for proof positive of a vulnerable location. If the path returns 200 and matches the regex, it's flagged as vulnerable and alerts you. All rules are run on all directories in a set of time-staggered background XHR requests, so network throughput remains high at all times. Bishop comes with a set of rules that hunt for the lowest hanging fruit, but the rule system is entirely extensible - rules are regular expressions that are run on specified directories, so if you can turn it into a regex, Bishop will look for it. Bishop is intended SOLELY for legal use on web servers that you control or are permitted to scan, and the developers are not responsible for how you choose to use this software. Bishop is MIT licensed and open source; contribute at https://github.com/jkingsman/bishop.
5 点満点で 3.812 件の評価
Google ではレビューを確認していません。 結果とレビューについて、詳しくはこちらをご覧ください。
詳細
- バージョン1.0.12
- 更新:2019年1月20日
- 提供元Jack Kingsman
- サイズ198KiB
- 言語English
- デベロッパー
メール
jack.kingsman+chrome@gmail.com - 非取引業者このデベロッパーは取引業者として申告していません。EU 加盟国の消費者とこのデベロッパーとの間に締結された契約には、消費者の権利が適用されません。
プライバシー
サポート
質問や提案、問題がある場合は、パソコンのブラウザでこのページを開いてください