Skip to main content
Name:commix
Category:Vulnerabilities
Publisher:trickest
Created:9/7/2021
Container:quay.io/trickest/commix:fc5febe-patch-3
Output Type:
License:Unknown

Parameters

os
string
--osForce back-end operating system (e.g. 'Windows' or 'Unix').
all
boolean
--allRetrieve everything.
tor
boolean
--torUse the Tor network.
url
string
required
Target URL.
data
string
--dataData string to be sent through POST.
host
string
--hostHTTP Host header.
--skipSkip testing for given parameter(s).
urls
file
required
Scan multiple targets given in a textual file.
alert
string
--alertRun host OS command(s) when injection point is found.
codec
string
--codecForce codec for character encoding (e.g. 'ascii').
crawl
boolean
--crawlCrawl the website starting from the target URL
delay
string
--delaySeconds to delay between each HTTP request.
level
string
--levelLevel of tests to perform (1-3, Default: 1).
proxy
string
--proxyUse a proxy to connect to the target URL.
purge
boolean
--purgeSafely remove all content from commix data directory.
smart
boolean
--smartPerform thorough tests only if positive heuristic(s).
users
boolean
--usersRetrieve system users.
cookie
string
--cookieHTTP Cookie header.
header
string
--headerExtra header (e.g. 'X-Forwarded-For: 127.0.0.1').
maxlen
string
--maxlenSet the max length of output for time-related
method
string
--methodForce usage of given HTTP method (e.g. PUT)
mobile
boolean
--mobileImitate smartphone through HTTP User-Agent header.
os-cmd
string
--os-cmdExecute a single operating system command.
prefix
string
--prefixInjection payload prefix string.
suffix
string
--suffixInjection payload suffix string.
tamper
string
--tamperUse given script(s) for tampering injection data.
answers
string
--answersSet predefined answers (e.g. quit=N,follow=N)
charset
string
--charsetTime-related injection charset (e.g. 0123456789abcdef)
headers
string
--headersExtra headers (e.g. 'Accept-Language: fr ETag: 123').
is-root
boolean
--is-rootCheck if the current user have root privileges.
offline
boolean
--offlineWork in offline mode.
referer
string
--refererHTTP Referer header.
request
file
-rLoad HTTP request from a file.
retries
string
--retriesRetries when the connection timeouts (Default: 3).
session
file
-sLoad session from a stored (.sqlite) file.
sitemap
boolean
-xParse target(s) from remote sitemap(.xml) file.
timeout
string
--timeoutSeconds to wait before timeout connection (Default:
auth-url
string
--auth-urlLogin panel URL.
hostname
boolean
--hostnameRetrieve current hostname.
is-admin
boolean
--is-adminCheck if the current user have admin privileges.
log-file
file
-lParse target from HTTP proxy log file.
skip-waf
boolean
--skip-wafSkip heuristic detection of WAF/IPS/IDS protection.
sys-info
boolean
--sys-infoRetrieve system information.
time-sec
string
--time-secSeconds to delay the OS response (Default: 1).
tmp-path
string
--tmp-pathSet the absolute path of web server's temp directory.
tor-port
string
--tor-portSet Tor proxy port (Default: 8118).
web-root
string
--web-rootSet the web server document root directory (e.g. '/var/www').
auth-cred
string
--auth-credHTTP authentication credentials (e.g. 'admin:admin').
auth-data
string
--auth-dataLogin parameters and data.
auth-type
string
--auth-typeHTTP authentication type (Basic, Digest, Bearer).
file-dest
string
--file-destHost's absolute filepath to write and/or upload to.
file-read
string
--file-readRead a file from the target host.
force-ssl
boolean
--force-sslForce usage of SSL/HTTPS.
param-del
string
--param-delSet character for splitting parameter values.
parameter
string
-pTestable parameter(s).
passwords
boolean
--passwordsRetrieve system users password hashes.
skip-calc
boolean
--skip-calcSkip the mathematic calculation during the detection
technique
string
--techniqueSpecify injection technique(s) to use.
tor-check
boolean
--tor-checkCheck to see if Tor is used properly.
verbosity
string
-vVerbosity level (0-4, Default: 0).
cookie-del
string
--cookie-delSet character for splitting cookie values.
file-write
string
--file-writeWrite to a file on the target host.
no-logging
boolean
--no-loggingDisable logging to a file.
privileges
boolean
--privilegesRetrieve system users privileges.
ps-version
boolean
--ps-versionRetrieve PowerShell's version number.
shellshock
boolean
--shellshockThe 'shellshock' injection module.
skip-empty
boolean
--skip-emptySkip testing the parameter(s) with empty value(s).
url-reload
boolean
--url-reloadReload target URL after command execution.
user-agent
string
--user-agentHTTP User-Agent header.
alter-shell
string
--alter-shellUse an alternative os-shell (e.g. 'Python').
file-upload
string
--file-uploadUpload a file on the target host.
ignore-code
string
--ignore-codeIgnore (problematic) HTTP error code (e.g. 401).
current-user
boolean
--current-userRetrieve current user name.
failed-tries
string
--failed-triesSet a number of failed injection tries, in file-based
ignore-proxy
boolean
--ignore-proxyIgnore system default proxy settings.
list-tampers
boolean
--list-tampersDisplay list of available tamper scripts.
random-agent
boolean
--random-agentUse a randomly selected HTTP User-Agent header.
crawl-exclude
string
--crawl-excludeRegexp to exclude pages from crawling (e.g. logout).
flush-session
boolean
--flush-sessionFlush session files for current target.
check-internet
boolean
--check-internetCheck internet connection before assessing the target.
ignore-session
boolean
--ignore-sessionIgnore results stored in session file.
skip-technique
string
--skip-techniqueSpecify injection technique(s) to skip.
drop-set-cookie
boolean
--drop-set-cookieIgnore Set-Cookie header from response.
skip-heuristics
boolean
--skip-heuristicsSkip heuristic detection for code injection.
ignore-redirects
boolean
--ignore-redirectsIgnore redirection attempts.
ignore-dependencies
boolean
--ignore-dependenciesIgnore all required third-party library dependencies.