TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
┌┬┐┬ ┬┌─┐┌─┐┌┬┐┌─┐┬ ┬┌─┐┌─┐┌─┐┬─┐ │ ├─┤├┤ ├┤ │ ├┤ │ │┌─┘┌─┘├┤ ├┬┘ ┴ ┴ ┴└─┘└ ┴ └ └─┘└─┘└─┘└─┘┴└─
TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
python theftfuzzer.py -d 'http://example.com/api/data'
python theftfuzzer.py -h
~$ python theftfuzzer.py -h usage: theftfuzzer.py [-h] -d DOMAIN [-c COOKIE]Cross Origin Resource Sharing Fuzzer by Corben Leo
optional arguments: -h, --help show this help message and exit -d DOMAIN, --domain DOMAIN URL / Target to fuzz -c COOKIE, --cookie COOKIE File containing cookie to send in fuzzing requests