Skip to content

AdityaDamodaran/Scajax

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
.settings
.settings
 
 
bin/com/sct
bin/com/sct
 
 
build
build
 
 
doc/screenshots
doc/screenshots
 
 
lib
lib
 
 
src/com/sct
src/com/sct
 
 
.classpath
.classpath
 
 
.project
.project
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Scajax

Scajax is an AJAX web application vulnerability scanner. The present release of Scajax only supports the detection of AJAX endpoints in websites, although future enhancements would allow its users to scan these endpoints for vulnerabilities directly through the tool. The scanner uses two separate methods for detecting vulnerabilities, namely an experimental static analysis method, and a dynamic analysis method.

Static Analysis

The static analysis engine uses 'plugins', which are XML files that can be used to specify regular expressions, which can in turn be used to extract AJAX endpoints from HTML/JavaScript code.

Dynamic Analysis

The dynamic analysis engine uses a Google chrome extension to interact with websites while they are rendered in a browser and extract endpoints on the fly.

Installation Instructions

Installing the Chrome Extension (required for dynamic analysis)

  1. Navigate to chrome://extensions/ in Google Chrome
  2. Click on the "Load unpacked extension" button Image 1
  3. Select the folder named "extension" listed in this repository, in the 'build' directory Image 2

Using the Scanner

  1. Enable the browser extension in Google Chrome from the Chrome Extensions page Image 3
  2. Run the AJAXScanner.jar file
  3. Enter the URL of the site to be scanned in the URL text field Image 4
  4. Select either the Static or the Dynamic analysis radio button
  5. Check the 'Spider this site' checkbox, if spidering is required.
  6. Click on the 'Analyse' button

Static Analysis

  1. The scanner parses either a single specified web page, or every single page in the site if the spider has been enabled, and lists all identified endpoints in the 'AJAX requests' listbox.
  2. The endpoints are categorised according to the webpages they were found on.
  3. Select an endpoint from this list to load its URL and parameters into the UI. The tool can be used to modify these parameters and the URL.
  4. The "Fire Request" button can be used to fuzz each endpoint.

Dynamic Analysis

  1. The webpages being scanned must be used in the browser in order to trigger AJAX requests. These requests will be caught by the scanner and all identified endpoints will be listed in the 'AJAX requests' listbox.
  2. The endpoints are categorised according to the webpages they were found on.
  3. Select an endpoint from this list to load its URL and parameters into the UI. The tool can be used to modify these parameters and the URL.
  4. The "Fire Request" button can be used to fuzz each endpoint.

About

Scajax is an AJAX web application vulnerability scanner. The present release of Scajax only supports the detection of AJAX endpoints in websites, although future enhancements would allow its users to scan these endpoints for vulnerabilities directly through the tool.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages