// arsenal·Web AppSecIntermediateFOSS

Commix

Automated OS-command-injection exploitation, like sqlmap but for shell injection.

Web AppSec

$ commix --help

Commix

// what it is

Description

Anastasios Stasinopoulos' command-injection scanner that auto-detects results-based, blind-time-based, and file-based variants and gives you a shell on success.

// use cases

What people use it for

Confirm command-injection findings
Automated exploitation

// commands

The commands you'll type

Test a URL

$ commix --url='https://target/ping?host=127.0.0.1'

// facts

category: Web AppSec
platforms: LIN · WIN · MAC
license: FOSS
difficulty: Intermediate

// links

// related in Web AppSec

Web AppSecIntermediate

Burp Suite

PortSwigger's intercepting HTTP proxy — the de facto web app testing platform.

OWASP ZAP

The free, OWASP-stewarded alternative to Burp.

Nikto

Loud-but-fast web server scanner — checks for thousands of misconfigurations.

FOSS

LIN·WIN·MAC

open entry →