Heimdall is an open source tool designed to automate fetching from a target site's admin panel using brute force in the wordlist. Developed entirely in Python, it has simple didactic code for study, and is an ideal tool for hacking arsenal.
It is extremely important that you have the mandatory tools listed below for Heimdall to work as expected. It is recommended that you use an operating system with a focus on Pentest.
You can download the latest tarball by clicking here or latest zipball by clicking here.
$ git clone https://github.com/CR3DN3/Heimdall.git
$ cd Heimdall && pip3 install -r requirements.txt
Usage: python3 heimdall.py [-h, --help] [-u, --url] [-w, --wordlist (1, 2, 3)]
[-p, --proxy <proxy>][--user-agent <custom>] [--update]
Description: Heimdall is an open source tool designed to automate fetching
from a target site's admin panel using brute force in the wordlist.
Optional Arguments:
-h, --help Show this help message and exit
-u URL, --url URL Target URL (http://www.site_target.com/)
--wordlist (1, 2, 3) Set wordlist. Default: 1 (Small) and Max: 3 (Big)
-p, --proxy Use a proxy to connect to the target URL
--user-agent Customize the User-Agent. Default: Random User-Agent
--update Upgrade Heimdall to its latest available version.
--no-update Disables the intention of updates
--no-logo Disable the initial banner
You can visit the collection of screenshots that demonstrate how it works on some platforms by clicking here.
./heimdall.py --url www.site_target.com --wordlist 1
./heimdall.py --url www.site_target.com --wordlist 2 --user-agent <USER-AGENT>
./heimdall.py --url www.site_target.com --wordlist extra/wordlists/custom.txt
./heimdall.py --update