SessionProbe is a multi-threaded pentesting tool designed to evaluate user privileges in web applications.
It takes a user's session token and checks for a list of URLs if access is possible, highlighting potential authorization issues.
It deduplicates URL lists and provides real-time logging and progress tracking.
SessionProbe features Test for authorization issues.
Sorts the URLs by response status code and extension, and provides the length.
Proxy functionality to pass all requests e.g. through Burp.
It then checks for a given user what they can access and provides a nice, easy-to-skim over output.
This Cyber News was published on www.helpnetsecurity.com. Publication date: Tue, 05 Dec 2023 06:13:05 +0000