cookiemonster
CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
Details
Category: Vulnerabilities
Publisher: trickest-mhmdiaa
Created Date: 11/30/2023
Container: quay.io/trickest/cookiemonster:7e8826e
Source URL: https://github.com/iangcarroll/cookiemonster
Parameters
Command:
-url
- An HTTP URL to retrieve cookies from instead of providing a cookieCommand:
-cookie
- The cookie to attempt to decode and unsignCommand:
-resign
- Unencoded data to resign the cookie with; presently only supported by DjangoCommand:
-verbose
- Enables additional output on how the cookie is decoded.Command:
-wordlist
- The path to load a base64-encoded wordlist from; the default is the builtin list.Command:
-concurrency
- How many attempts should run concurrently; the default is 100