PENTOL – Pentester Toolkit For Fiddler2

PENTOL – Pentester Toolkit ^(http://www.kitploit.com/search/label/Toolkit) is built as a plugin ^(http://www.kitploit.com/search/label/Plugin) for the Fiddler ^(http://www.kitploit.com/search/label/Fiddler) HTTP debugging ^(http://www.kitploit.com/search/label/Debugging) proxy.

Features
CORS DETECTED Cross-Origin Resource Sharing
CRLF DETECTED HTTP response splitting
Headers DETECTED (X-Frame-Options)
Fiddler2 ^(https://www.telerik.com/download/fiddler/fiddler2)

  • Open Fiddler2
  • Press Key CTRL + R or Rules > Customize Rules...
  • Copy all script SampleRules.js ^(https://raw.githubusercontent.com/radenvodka/PENTOL/master/SampleRules.js)
  • Press Key CTRL + S for Save
  • Check tools in Rules TAB

    Credits

    • Thanks to allah
    • Eka Syahwan (Creator) bugrecon ^(https://draft.appmarsh.com/bugrecon.or.id) / H1 ^(https://hackerone.com/radenvodka) / bugcrowd ^(https://bugcrowd.com/radenvodka)
    • Edo Maland (Powerstager) https://github.com/Screetsec ^(https://github.com/Screetsec)
    • Jack Wilder admin in http://www.linuxsec.org ^(http://www.linuxsec.org/)

    Disclaimer
    Note: modifications, changes, or changes to this code can be accepted, however, every public release that uses this code must be approved by writing this tool (Eka S)

    Download PENTOL ^(https://github.com/radenvodka/PENTOL)