Wednesday, September 17, 2014

DotDotPwn on GitHub and in the OWASP Testing Guide v4.0

It's an honour to be listed in the latest release of the OWASP Testing Guide 4.0 as one of the tools to test Web applications against the Path Traversal vulnerability. In other old news, DotDotPwn was included in Kali Linux and BlackArch Linux (an Arch-based distro for pentesters & researchers).

Since time ago, Eldar '@Wireghoul' Marcussen (, has been supporting this project a lot by adding new functionalities and payloads as well as fixing some bugs. THANKS !!!

That said, we strongly recommend to download and use the latest enhanced DotDotPwn on steroids from his github repositoryat:

For the desperate:
$ git clone
$ cd dotdotpwn
$ ./

Happy ../../../Path/../Traversal/../Fuzzing !
Ch33rs ! B-]