Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

p0dalirius / ApacheTomcatScanner Public

Notifications You must be signed in to change notification settings
Fork 95
Star 815

Code
Issues
Pull requests
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Security
Insights

Releases: p0dalirius/ApacheTomcatScanner

Releases · p0dalirius/ApacheTomcatScanner

2.3.2: Added HTTPs support

03 Aug 10:40

p0dalirius

Compare

Choose a tag to compare

Loading

2.3.2: Added HTTPs support

Features

Multithreaded workers to search for Apache tomcat servers.
Multiple target source possible:
- Retrieving list of computers from a Windows domain through an LDAP query to use them as a list of targets.
- Reading targets line by line from a file.
- Reading individual targets (IP/DNS/CIDR) from -tt/--target option.
Custom list of ports to test.
Supports HTTP and HTTPs schemes.
Supports self-signed certificates.
Tests for /manager/html access and default credentials.
List the CVEs of each version with the --list-cves option

Assets 2

Loading

its0x08 reacted with thumbs up emoji

15250242503 reacted with laugh emoji

All reactions

👍 1 reaction
😄 1 reaction

2 people reacted

2.3.1

03 Aug 08:47

p0dalirius

Compare

Choose a tag to compare

Loading

2.3.1

Updated requirements.txt

Release 2.3.1

Assets 2

Loading

All reactions

2.2

02 Aug 14:25

p0dalirius

Compare

Choose a tag to compare

Loading

2.2

Merge remote-tracking branch 'origin/main' into main

Assets 2

Loading

its0x08 reacted with thumbs up emoji

All reactions

👍 1 reaction

1 person reacted

2.1: Bug fixes

02 Aug 08:08

p0dalirius

Compare

Choose a tag to compare

Loading

2.1: Bug fixes

Fixes #9

Release 2.1

Assets 2

Loading

All reactions

2.0: Added reporting, list of targets from a windows domain

01 Aug 15:53

p0dalirius

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.

GPG key ID: 4AEE18F83AFDEB23

Expired

Verified

Learn about vigilant mode.

Compare

Choose a tag to compare

Loading

2.0: Added reporting, list of targets from a windows domain

Features

Multithreaded workers to search for Apache tomcat servers.
Multiple target source possible:
- Retrieving list of computers from a Windows domain through an LDAP query to use them as a list of targets.
- Reading targets line by line from a file.
- Reading individual targets (IP/DNS/CIDR) from -tt/--target option.
Custom list of ports to test.
Tests for /manager/html access and default credentials.
List the CVEs of each version with the --list-cves option

Assets 2

Loading

All reactions

1.3: Added list of CVEs

30 Jul 16:02

p0dalirius

Compare

Choose a tag to compare

Loading

1.3: Added list of CVEs

Features

Multithreaded workers to search for Apache tomcat servers.
Multiple target source possible:
- Retrieving list of computers from a Windows domain through an LDAP query to use them as a list of targets.
- Reading targets line by line from a file.
- Reading individual targets (IP/DNS/CIDR) from -tt/--target option.
Custom list of ports to test.
Tests for /manager/html access and default credentials.
List the CVEs of each version with the --list-cves option

Demonstration

Assets 2

Loading

All reactions

1.2: First stable version

29 Jul 16:20

p0dalirius

Compare

Choose a tag to compare

Loading

1.2: First stable version

Features

Multithreaded workers to search for Apache tomcat servers.
Multiple target source possible:
- Retreiving list of computers from a windows domain through an LDAP query to use them as a list of targets.
- Reading targets line by line from a file.
- Reading individual targets (IP/DNS/CIDR) from -tt/--target option.
Custom list of ports to test.
Tests for /manager/html access and default credentials.

Demonstration

Assets 2

Loading

All reactions

Previous 1 2 Next

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.