v2.1

What's New?

1. Added a script to identify if the target is using a WAF
2. Added the broken link script that I forgot to add in earlier releases
3. Added a script to extract the page source code of the website
4. Added an admin and login path list to utils/payloads
5. Bug fixes

v2.0

What's New??

1. Gsec will now scan for misconfiguration and vulnerability bugs with nuclei instead of just CVEs.
2. Added a Domain header scanner which will save the results to the output directory.
3. Gsec will now use nmap to scan for open ports and it will save the results to the output directory.
4. The crawler.py script has been updated.
5. Improvements and bug fixes

v1.8

What's New???

1. Gsec will now scan for vulnerabilities with nmap and save the results to the output directory
2. Javascript file extraction with javascript_scanner.py
3. Fixed the API endpoints output in api_fuzzer.py
4. Made the host header injection script a bit more accurate to eliminate false positives
5. improvements and bug fixes

v1.7

What's new???

1. Added param_finder.py to utils. This script will scan for vulnerable parameters.
2. Now you will be able to find API endpoints with the api_fuzzer.py script.
3. Fixed the output of subprocess in the sub_output.py script in modules.
4. Added nuclei parser support to a few nuclei scans in nuclei_vulns.py.
5. Lots of bug fixes and improvements in this release.

v1.6

What's New??

1. Now you can see the geolocation of any domain.
2. Extract information from the X-Generator tag.
3. Added misconfigurations scans in nuclei_vulns.py
4. Fixed the HTTP Method Override scan ouput in fetch_requests.py
5. improvements and bug fixes

v1.5

What's New

1. Now you can list available plugins
2. It now scans for other metafiles like security.txt and sitemap.xml.
3. Checks for HTTP Method Override
4. Fixed problems with the port scanner
5. Deleted the xss.py script
6. If the website is using PHP it will now find the /phpadmin directory.
7. nuclei now checks for templates in the http/ directory in nuclei-templates. (make sure you update nuclei-templates)
8. Other bug fixes and improvements.

v1.4

What's New?

1. Added Shopify to the CMS scanner
2. New feature to identify swagger-ui API
3. Added a list of API payloads
4. Added a few scanners to identify XSS and a few other vulnerabilities
5. Optimization and bug fixes

v1.2

What's New???

1. Fixed a bug in optionscheck.py
2. New version

v1.1

What's New?????

1. Some error handling on some modules.
2. Changed the the color scheme on the XSS output.
3. Bug fixes
4. New version

beta-v0.1

Basic recon & vulnerability scanning.