ATTACK / Cipher.org.uk 
=======================================
Application that allows to test
website security , from known threats.
=======================================
This tool created so someone can speed up any webserver related 
attacks using a list of known vulns. The file with vulns is called
exploits.txt and it must be in the same dir with attack.java .

NOTE : You can add any vuln you want into this file , Attack will take the
attack you suggest and try it.

How to use the tool : 

Without Proxy
--------------
If you dont want to use proxy do : 
java Attack http://www.website.com 

With Proxy 
----------
java Attack http://www.website.com  Proxy=true  213.88.162.236 80

213.88.162.236 is a random proxy I used, you can put whatever you want there.

As soon as the program starts you will something like that :

Request :/.htpasswrd
Message: Forbidden
Code: 403

and 

Request :/.passwd
Message: OK
Code: 200

and so on ... 

-Request is what we send to the webserver 
-Message is what the server send back to as (Forbidden,OK,Not Found ....)
-Code is just the Code naem foe the message 

You have to check this information as they scroll down the screen , and if you find 
something which seems like a hole try it in your browser or wherever you want.

for example : 

Request :/.passwd
Message: OK
Code: 200

This means that the server have a file .passwd in the root directory 
which probably contains passwords

Request :/.htpasswrd
Message: Forbidden
Code: 403

This means that the server have a file .passwd in the root directory 
which probably contains passwords but you dont have the authority to access it.


you can redirect the output of the tool to a file doing : 

java Attack http://www.website.com  Proxy=true  213.88.162.236 80 > output.txt
or
java Attack http://www.website.com  > output.txt