Skip to content
/ SSTI_DETECTOR Public

This tool allows you to find ssti vulnerability with ease!

20 stars 10 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

faiyazahmad07/SSTI_DETECTOR

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
install.sh
install.sh
 
 
payload.json
payload.json
 
 
requirements.txt
requirements.txt
 
 
ssti.py
ssti.py
 
 

Repository files navigation

SSTI_DETECTOR

This tool tries to automate the process of ssti finding for you. It first send request to the url that you have supplied and if the payload is executed in the response then it will confirm the vulnerability.

INSTALLATION

  1. Clone this file in linux
  2. In terminal, type "sudo bash install.sh"
  3. Installation will be completed

USAGE

GET: python3 ssti.py -u --get 1

POST: python3 ssti.py -p --post 1 -p param1,param2

SCAN LIST OF URLS: python3 ssti.py -f .txt

Custom Payloads

We can add custom payloads in this tool. Just open the "payload.json" file and add your paylaod like: { "payload":"${7*7}", "output":"49" }

SCREENSHOT

ssti

Visit https://bepractical.tech for more such tools/content/services YouTube: https://youtube.com/c/BePracticalTech

About

This tool allows you to find ssti vulnerability with ease!

Resources

Readme
Activity

Stars

20 stars

Watchers

3 watching

Forks

10 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages