From cac6314f05a6c77845d08be4cbe2e65be36c4126 Mon Sep 17 00:00:00 2001 From: duckie Date: Fri, 21 Aug 2020 15:52:57 +0530 Subject: [PATCH] Delete README.md --- Corsy/README.md | 72 ------------------------------------------------- 1 file changed, 72 deletions(-) delete mode 100644 Corsy/README.md diff --git a/Corsy/README.md b/Corsy/README.md deleted file mode 100644 index 7a03b38..0000000 --- a/Corsy/README.md +++ /dev/null @@ -1,72 +0,0 @@ - -

-
- Corsy -
- Corsy -
-

- -

CORS Misconfiguration Scanner

- -

- - - - - - -

- -### Introduction -Corsy is a lightweight program that scans for all known misconfigurations in CORS implementations. - -![demo](https://i.ibb.co/Jc1HtmW/corsy.png) - -### Requirements -Corsy only works with `Python 3` and has the following depencies: - -- `tld` -- `requests` - -To install these dependencies, navigate to Corsy directory and execute `pip3 install -r requirements.txt` - -### Usage -Using Corsy is pretty simple - -`python3 corsy.py -u https://example.com` - -##### Scan URLs from a file -`python3 corsy.py -i /path/urls.txt` - -##### Number of threads -`python3 corsy.py -u https://example.com -t 20` - -##### Delay between requests -`python3 corsy.py -u https://example.com -d 2` - -##### Export results to JSON -`python3 corsy.py -i /path/urls.txt -o /path/output.json` - -##### Custom HTTP headers -`python3 corsy.py -u https://example.com --headers "User-Agent: GoogleBot\nCookie: SESSION=Hacked"` - -##### Skip printing tips -`-q` can be used to skip printing of `description`, `severity`, `exploitation` fields in the output. - -### Tests implemented -- Pre-domain bypass -- Post-domain bypass -- Backtick bypass -- Null origin bypass -- Unescaped dot bypass -- Invalid value -- Wild card value -- Origin reflection test -- Third party allowance test -- HTTP allowance test -### Support the developer -Liked the project? Donate a few bucks to motivate me to keep writing code for free. - -- [Paypal](https://www.paypal.me/s0md3v) -- [Patreon](https://www.patreon.com/s0md3v)