🔐 Web Cache Deception Scanner (WCD-Scan)

A fast Python tool to detect Web Cache Deception vulnerabilities on web apps by appending fake static extensions (like .css, .jpg, etc.) to sensitive endpoints.

🚀 Features

Scans multiple sensitive endpoints
Appends various payload extensions (.css, .jpg, ;style.css, etc.)
Checks:
- HTTP status codes
- Response size
- Cache-Control header
- Signs of personal info leaks (name, email, wallet, etc.)
Multithreaded for fast scanning

⚙️ Setup

📦 Requirements

Python 3.x
Install dependencies:
```
pip install requests
```

🔧 Usage

pip install requests
python wcd_scanner.py https://www.target.com

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
endpoints.txt/account /account/profileview /dashboard /orders /billing		endpoints.txt/account /account/profileview /dashboard /orders /billing
README.md		README.md
wcd_scanner.py		wcd_scanner.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

🔐 Web Cache Deception Scanner (WCD-Scan)

🚀 Features

⚙️ Setup

📦 Requirements

🔧 Usage

About

Uh oh!

Releases

Packages

Languages

mkwolfx/wcd_scanner.py

Folders and files

Latest commit

History

Repository files navigation

🔐 Web Cache Deception Scanner (WCD-Scan)

🚀 Features

⚙️ Setup

📦 Requirements

🔧 Usage

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages