ApacheTomcatScanner - A python script to scan for Apache Tomcat server vulnerabilities.
Features:
- Multi-threaded workers to search for Apache tomcat servers.
- Multiple target source possible:
- Retrieving list of computers from a Windows domain (through LDAP query)
- Reading targets line by line from a file.
- Reading individual targets (IP/DNS/CIDR) from -tt/--target option.
- Custom list of ports to test.
- Tests for /manager/html access and default credentials.
- List the CVEs of each version with the --list-cves option
Links: