SessionProbe is a multi-threaded pentesting tool designed to evaluate user privileges in web applications. It takes a user’s session token and checks for a list of URLs if access is possible, highlighting potential authorization issues. It deduplicates URL lists and provides real-time logging and progress tracking. SessionProbe features Test for authorization issues Automatically dedupes URLs Sorts the URLs by response status code and extension (e.g., .css, .js), and provides the length Multi-threaded Proxy functionality to … More

The post SessionProbe: Open-source multi-threaded pentesting tool appeared first on Help Net Security.