CLICK-Jack
It is a automatic tool to find Clickjacking Vulnerability in various Web applications.
What is Clickjacking ?
Clickjacking, also known as a โUI redress attackโ, is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on another page when they were intending to click on the top level page. Thus, the attacker is โhijackingโ clicks meant for their page and routing them to another page, most likely owned by another application, domain, or both. Reference
Installation:
git clone https://github.com/princep4/Click-Jack.git
cd Click-Jack
pip install -r requirements.txt
Example:
To run on list of domains use below command:
python3 clickjack.py
or
python3 clickjack.py urls.txt
Benifits:
- It will work for list of urls
- Output the list of the vulnerable urls in seperate text file
Support ME:
2 Oct 27, 2022
81 Dec 20, 2022
10 Oct 06, 2022
35 Dec 28, 2022
1 Aug 02, 2022
1 Dec 24, 2021
243 Dec 27, 2022
36 Dec 02, 2022
8 Sep 02, 2022
79 Dec 20, 2022
555 Jan 02, 2023
5 Dec 03, 2022
30 Nov 22, 2022
16 Dec 30, 2022
1 Jan 06, 2022
7 Oct 22, 2022
3 May 05, 2022
9 Jun 05, 2022
2 Oct 29, 2022
7 Jan 05, 2023