snallygaster
snallygaster is a tool that looks for files accessible on web servers that shouldn’t be public and can pose a security risk. Typical examples include publicly accessible git repositories, backup files potentially containing passwords or database dumps. In addition, it contains a few checks for other security vulnerabilities.
Name:snallygaster
Category:Misconfiguration
Publisher:trickest
Created:6/23/2021
Container:
quay.io/trickest/snallygaster:0.0.11
Output Type:
License:Unknown
Source:View Source
Parameters
--info
Enable all info tests (no bugs/security vulnerabilities).--path
Base path on server (scans root dir by default).--debug
Show detailed debugging info
Hostname to scan.--noisy
Show noisy messages that indicate boring bugs, but no security issue.--nowww
Skip scanning www.[host].--tests
Comma-separated tests to run.--nohttp
Don't scan http.--nohttps
Don't scan https.--useragent
User agent to send in request header.