TH
the4ingmaster/idor-hunter
Advanced automated IDOR testing tool with UUID fuzzing, JWT analysis, GraphQL support, POST request fuzzing, and smart ID parameter discovery.
๐ก๏ธ IDOR-Hunter
Advanced Automated IDOR Detection Tool
Built for Pentesters & Bug Bounty Hunters
โก Overview
IDOR-Hunter is an advanced automation tool designed to detect
Insecure Direct Object Reference (IDOR) vulnerabilities across:
- ๐ Web Applications
- ๐ APIs
- ๐ JWT-based Authentication Systems
- โก GraphQL Endpoints
๐ฅ Features
โจ Core Capabilities
- ๐ข Numeric ID Fuzzing
- ๐งฌ UUID Fuzzing
- ๐ฌ POST Request Fuzzing
- ๐ Automatic ID Parameter Discovery
- ๐ Response Diff Analysis
โจ Advanced Testing
- ๐ JWT Token ID Manipulation
- โก GraphQL IDOR Detection
- ๐ช Cookie-based Authentication Support
- ๐ชช Header-based Authentication
- ๐ Burp Request Import
โจ Built for Performance
- โ๏ธ Cross Platform (Windows / Linux / macOS)
- ๐ Fast & Lightweight
- ๐ง Smart Detection Logic
๐ฅ๏ธ Preview
def print_banner():
banner = r"""
โโโโโโโโโโ โโโโโโโ โโโโโโโ โโโ โโโโโโ โโโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโ โโโ โโโโโโ โโโโโโโโ โโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โโโโโโ โโโโโโ โโโโโโโโโโโ โโโโโโโโโโโ โโโโโโโโโ โโโ โโโ โโโโโโ โโโโโโโโ
โโโโโโ โโโโโโ โโโโโโโโโโโ โโโโโโโโโโโ โโโโโโโโโโโโโ โโโ โโโโโโ โโโโโโโโ
โโโโโโโโโโโโโโโโโโโโโโโ โโโ โโโ โโโโโโโโโโโโโโโ โโโโโโ โโโ โโโโโโโโโโโ โโโ
โโโโโโโโโโ โโโโโโโ โโโ โโโ โโโ โโโ โโโโโโโ โโโ โโโโโ โโโ โโโโโโโโโโโ โโโ
๐ IDOR-Hunter
Advanced IDOR Detection Framework
by Anand Mahajan
"""
print(banner)