Altair – An Open Source Modular Web Vulnerability Scanner

  • 246
  •  
  •  
  • 1
  •  
  •  
  •  
    247
    Shares

Altair is a Python tool that can be used to scan for web related vulnerabilities, some of which include database vulnerabilities (SQL), Cross Site Scripting (XSS), Local File Inclusion (LFI), Remote File Inclusion (RFI), potential sensitive files, and directories containing sensitive information.

The tool scans files and directories of the target host to find potential vulnerabilities. Altair can also make use of SQLMAP and Lfier tools to exploit the said vulnerabilities. SQLMAP is a handy tool that exploits database vulnerabilities. Lfier tool is capable of exploiting the LFI vulnerabilities.

Altair Installation

Altair is a Python based tool that does not require any specific packages to be installed as a pre-requisite. The SQLMAP and Lfier tools must be available on the disposal of the tool if the goal is to exploit the (LFI,SQL) vulnerabilities found during the scanning process. The tool can be cloned using the following command.

git clone https://github.com/evilsocket/altair

Altair cloning

How Altair Works

Altair tool can find the vulnerabilities in the target host by running the following command.

python altair.py –u <target web host here>

The above command crawls all the links associated with the target web host. After completing the crawling process, the tool enumerates the target links to find vulnerabilities. If the target host is vulnerable to any of the aforementioned vulnerabilities, the tool displays the results as shown in the following screenshot.

xss issues detected

We can also define the filters and modules in the command to refine the scanning process and exploit the vulnerabilities (if any). For instance, we can apply the sqli filter to scan the target web host for SQL vulnerabilities. The module (SQLMAP) can be defined to exploit the SQL vulnerabilities. The following command shows the filter and module inclusion in the scanning process.

python altair.py --filter=sqli --load-modules=sqlmap –url=<target web host here>

If the target web host is vulnerable to SQL vulnerabilities, the tool asks for permission to launch the module (sqlmap) to further exploit the discovered vulnerability.

sql vulnerability found

 

What Bunny rating does it get?

Altair is handy web scanner that can also exploit the LFI and SQL vulnerabilities if required. The tool however often goes into idle mode while scanning large web applications. for that reason we are giving it 3.5/5 bunnies

Want to learn more about ethical hacking?

We have a  networking hacking course that is of a similar level to OSCP, get an exclusive 95% discount HERE

Do you know of another GitHub related hacking tool?

Get in touch with us via the contact form if you would like us to look at any other GitHub ethical hacking tools.

The following two tabs change content below.
Avatar

Unallocated Author

Please note that the article you are reading has an unallocated author as the original author is no longer employed at latesthackingnews.com, this has been put in place to adhere with general data protection regulations (GDPR). If you have any further queries, please contact: [email protected]
Avatar

Unallocated Author

Please note that the article you are reading has an unallocated author as the original author is no longer employed at latesthackingnews.com, this has been put in place to adhere with general data protection regulations (GDPR). If you have any further queries, please contact: [email protected]

Do NOT follow this link or you will be banned from the site!