Forbidden Versions Save

Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.

v11.0

6 days ago

v11.0 release notes:

  • fixed a bug where testing double headers was not properly locked to Python Requests,
  • added new options allowing you to set multiple additional HTTP request headers using -H and HTTP cookies using -b,
  • added new path bypasses and a new and lighter paths-sniper test case,
  • added a table output - nice for analyzing results on wide screens,
  • improved and optimized the code,
  • version bump.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.9

1 week ago

v10.9 release notes:

  • small text changes in README,
  • removed redundant argparse dependency (thanks for pointing it out fabaff and branchvincent),
  • updated the user agents list,
  • version bump.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.8

2 months ago

v10.8 release notes:

  • install instructions update,
  • updated the user agents list,
  • added AWS IP 169.254.169.254,
  • version bump.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.6

4 months ago

v10.6 release notes:

  • added request timeout (-rt) option.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.5

4 months ago

v10.5 release notes:

  • argument parsing code rebase and improved few other stuff,
  • boolean options / arguments no longer require yes or no value.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.4

4 months ago

v10.4 release notes:

  • argument parsing code rebase and improved few other stuff,
  • boolean options / arguments no longer require yes or no value.

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v10.2

7 months ago

v10.2 release notes:

  • complete code rebase, fixed all possible bugs, and did exhaustive testing,
  • choose between PycURL or Python Requests engine,
  • choose to include or exclude URL query string and fragmet,
  • URL, IP, and allowed HTTP methods checks,
  • manually validated all the HTTP request headers, and added more test values,
  • implemented proper session management to not ignore given HTTP cookies on HTTP redirects,
  • clean exit on keyboard interrupt (CTRL + C) without loosing any progress,
  • and many more improvements...

Python tool for brute forcing 4xx response status codes. Based on PycURL and Python Requests.

v9.7

1 year ago

Single thread sleep and debug mode.

Python tool for brute forcing 4xx response status codes. Based on PycURL.

v9.1

1 year ago

Reintroduced PycURL as it is less prone to exceptions and because Python Requests fixed their double header bug.

Python tool for brute forcing 4xx response status codes. Based on PycURL.

v8.5

1 year ago

Added random user agent feature, and improved file upload testing.

Package install. Removed PycURL as it was redundant, Python Requests does the same job.

Python tool for brute forcing 4xx response status code