cybervie logo

Breacher | Find Admin Login Pages in Website

breacher banner | Cybervie

In this article, we are going to discuss a tool called the Breacher which is an open-source project by s0md3v.

What is Breacher?

The Breacher is an open-source tool written in python and it has some very useful features, but there is one basic functionality of this tool, which is to find admin login pages on websites. This tool checks the website and provides the URL to the potential login pages on the website.

Features

  •  Multi-threading on demand
  •  Big path list (482 paths)
  •  Supports php, asp and html extensions
  •  Checks for potential EAR vulnerabilites
  •  Checks for robots.txt
  •  Support for custom patns

One of the best features of this tool is that it supports multithreading. The breacher also tests for Execution After Redirect(EAR) Vulnerabilities.

Installation

Open The Terminal and type the following commands

#clone the git repo
git clone https://github.com/s0md3v/Breacher

#change Directory to Breacher
cd Breacher

#to open the help menu in breacher
python breacher.py -h

The help menu of the Breacher will look something like this.

Breacher Help Menu

Usage Commands

  • Check all paths with php extension
python breacher -u example.com --type php
  • Checks all paths with php extension with threads
python breacher -u example.com --type php --fast
  • Check all paths without threads
python breacher -u example.com
  • Adding a custom path. For example if you want all paths to start with /data (example.com/data/…) you can do this:
python breacher -u example.com --path /data

Note: When you specify an extension using the –type option, Breacher includes paths of that extension as well as paths with no extensions like /admin/login

Demo

Breacher Demo

In the above picture, you can see that I have used a simple command python breacher.py – u <website>, and the tool automatically check if there is any robot.txt and then provide you with all the potential admin pages.

Important Links

  1. Official Github
  2. Take A Quick Look On What is Web Application Security

For More Blogs Like This Please Visit our blog page.

Share the Post...
WhatsApp

About Cybervie

Cybervie provides best cyber security training program in hyderabad, India.This cyber security course enables you to detect vulnerablities of a system, wardoff attacks and manage emergency situations. Taking a proactive approach to security that can help organisations to protect their data, Cybervie has designed its training module based on the cyber security industry requirements with three levels of training in both offensive and defensive manner, and use real time scenarios which can help our students to understand the market up-to its standard certification which is an add on advantage for our students to stand out of competition in an cyber security interview.

More Info – Click Here

Facebook-f Twitter Instagram Whatsapp Youtube Linkedin

Recent Posts

Follow Us on Youtube

CSEP : Certified Security Engineer Professional

Certified Security Engineer Professional (CSEP) certification is a comprehensive program designed for individuals aspiring to become cybersecurity engineers. It equips candidates with hands-on knowledge across various in-demand cybersecurity domains, ensuring they are well-prepared for current and future industry needs.

Organizations today seek candidates with a diverse set of skills beyond just one tool or area of expertise. The CSEP certification addresses this need by providing essential hands-on experience, making you proficient in multiple cybersecurity domains.

The program includes live classes featuring practical exercises, followed by a real-time project that offers valuable industrial knowledge.

Domains covered in the CSEP certification:

  • Cybersecurity Essentials
  • Penetration Testing
  • Application Security
  • Security Operations
  • AI in Cybersecurity
  • Multi-Cloud Security
  • Threat Intelligence

 

This certification is ideal for those looking to secure a role as a cybersecurity engineer and want to gain a competitive edge in the cybersecurity field.

For Further kindly feel free to fill out the profile form  for relevant information on our counselor will get in touch with you

Visit Program

Sign up for our Newsletter

Interested in Cyber Security Training Program 2024 – Click Here

Subscribe to Cybervie Weekly Insights

Get in Touch! Now.

Academy

Service

Company

Contact Us

Office Address

  • Hyderabad India - 91springboard, LVS Arcade, Jubilee Enclave, Hitech City, Hyderabad 500081.
  • Sydney Australia - Cybervie 2/4 eastbourne road homebush west NSW 2140 Australia.
  • US - Cybervie 14621 Juventus St Charlotte, North Carolina 28277-4117 United States.
Facebook-f Twitter Instagram Whatsapp Youtube Linkedin

© 2024 Ionots Technologies Pvt.Ltd | All Rights Reserved.

© 2024 Ionots Technologies Pvt.Ltd | All Rights Reserved. |  Created By Mohit Goyal

© 2024 Ionots Technologies Pvt. Ltd. | Website Design and Development By Inspired Monks
Open chat
1
Hello 👋
How can we help you?