Uses collaborator dynamically to detect server side request forgery.
Identifies if backup files are exposed.
Identifies if a git directory is present under the web root.
Observes responses passively and uses regular expressions to identify if AWS tokens are being leaked.
Uses collaborator dynamically to detect vulnerability to CVE-2021-44228 via exploitation.
Uses a mixture of response matching and dynamic requests to detect the presence of server side prototype pollution.
Uses a hueristic to detect transformed inputs which are an indicator of possible server-side code injection.