Open In App

Breacher – Tool To Find Admin Login Pages And EAR Vulnerabilities

Last Updated : 05 Aug, 2022
Improve
Improve
Like Article
Like
Save
Share
Report

Breacher is a free and open-source tool available on GitHub.  Breacher is used as an information-gathering tool. This tool can be used to get information about our target(domain). We can target any domain using  Breacher. The interactive console provides a number of helpful features, such as command completion and contextual help. This tool is written in python, so you must have python installed in your Kali Linux to use this tool. 

Breacher is a python script to find admin login pages and EAR vulnerabilities. This tool uses different libraries, such as the Big path list (789 paths). Breacher tool supports PHP, asp JSP, and HTML extensions. Before scanning the web apps for the admin panel, it checks for robots.txt. This tool also supports custom paths and follows the technique of multi-threading on demand.

Uses and Features of Breacher :

  • Before scanning web apps. Breacher Checks for potential EAR vulnerabilities
  • Breacher Checks for robots.txt before scanning.
  • Breacher Support for custom paths to find admin panels
  • Breacher follows the technique of Multi-threading on demand
  • Breacher uses Big path list (798 paths)
  • Breacher Supports php, asp and html extensions.
  • Breacher is a python script to find admin login pages and EAR vulnerabilities
  • Breacher is an open source tool you can download the tool for free.
  • Breacher has interactive console provides a number of helpful features.

Installation of Breacher  :

Step 1: Open your kali linux operating system and install the tool using the following command.

git clone https://github.com/s0md3v/Breacher.git
cd Breacher

Step 2: Use the following command to list out the content of the tool and use the second command to run the tool.

ls
python breacher.py

The tool is running successfully now we will see some examples of using the tool.

Usages

Example 1: Use Breacher tool to check all paths without threads

python breacher.py -u <domain>

You can see that we are getting many admin panels in the website domain. Similarly, you can use the tool to scan your own website.

Example 2: Use the Breacher tool to check all paths with PHP extensions.

python breacher.py -u <website domain> --type php

You can see that we are getting many admin panels in the website domain. Similarly, you can use the tool to scan your domain. It can even find the robots.txt file of the web application.

Example 3: Use the Breacher tool to check all paths with PHP extensions with threads.

python breacher -u <domain> --type php --fast

Example 4: Use the Breacher tool to add a custom path.

python breacher.py -u <domain>


Like Article
Suggest improvement
Previous
Spoodle Subdomain Tracker in Linux
Next
Creating dialog boxes with the Dialog Tool in Linux
Share your thoughts in the comments

Similar Reads

Admin-Scanner – Find Admin Panel Of Any Website By Using Custom Wordlist
PHPvuln – Linux Tool to Find Vulnerabilities in PHP Code
OKadminFinder - Linux tool to Find Admin Panel of site
Cangibrina – Admin Dashboard Finder Tool on Linux
Using Metasploit and Nmap to Scan for Vulnerabilities in Kali Linux
Optiva Framework - Web Application Vulnerabilities Scanner
How to Scan Vulnerabilities of Websites using Nikto in Linux?
BrokenSMTP – Python Script to look common vulnerabilities on SMTP server
Router Vulnerabilities in Kali Linux
How to Grant Admin Privileges to a User in Linux

M
mohdshariq
Article Tags :
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox