{"id":30666800,"url":"https://github.com/denoyey/open-redirect","last_synced_at":"2025-08-31T22:16:59.990Z","repository":{"id":311083652,"uuid":"1042403620","full_name":"denoyey/Open-Redirect","owner":"denoyey","description":"Scan and detect open redirect issues in web applications using automated payload injection. Ideal for security testing and reconnaissance.","archived":false,"fork":false,"pushed_at":"2025-08-22T01:40:14.000Z","size":943,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-08-22T03:37:49.593Z","etag":null,"topics":["cybersecurity","hacking","open-redirect","open-redirect-detection","open-redirect-injection","pentesting","tools-python","vulnerability-detection"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/denoyey.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-08-22T01:01:44.000Z","updated_at":"2025-08-22T01:40:18.000Z","dependencies_parsed_at":"2025-08-22T03:37:51.360Z","dependency_job_id":"3bf511b6-be39-4ab7-b263-3b366983f9e5","html_url":"https://github.com/denoyey/Open-Redirect","commit_stats":null,"previous_names":["denoyey/open-redirect"],"tags_count":null,"template":false,"template_full_name":null,"purl":"pkg:github/denoyey/Open-Redirect","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/denoyey%2FOpen-Redirect","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/denoyey%2FOpen-Redirect/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/denoyey%2FOpen-Redirect/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/denoyey%2FOpen-Redirect/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/denoyey","download_url":"https://codeload.github.com/denoyey/Open-Redirect/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/denoyey%2FOpen-Redirect/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":273047500,"owners_count":25036378,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-31T02:00:09.071Z","response_time":79,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","hacking","open-redirect","open-redirect-detection","open-redirect-injection","pentesting","tools-python","vulnerability-detection"],"created_at":"2025-08-31T22:16:54.841Z","updated_at":"2025-08-31T22:16:59.981Z","avatar_url":"https://github.com/denoyey.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cdiv align=\"center\"\u003e\n\n# OPEN-REDIRECT\n\n\u003cp align=\"center\"\u003e\n \u003cimg src=\"https://github.com/denoyey/Open-Redirect/blob/91828a4066856b8e35fe7d94b9d98d89e462e7a2/Review.png\" alt=\"Open-Redirect\"/\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\nOpen-Redirect is a tool for detecting open redirect vulnerabilities in web applications. These flaws allow attackers to redirect users to malicious sites using trusted URLs. This tool tests various parameters and payloads to identify unsafe redirects. Ideal for penetration testing and web security education.\n\u003c/p\u003e\n\n\u003cdiv align=\"center\"\u003e\n\n![Build](https://img.shields.io/badge/build-stable-28a745?style=for-the-badge\u0026logo=github)\n![Platform](https://img.shields.io/badge/platform-Linux-0078D6?style=for-the-badge\u0026logo=linux\u0026logoColor=white)\n![Last Commit](https://img.shields.io/github/last-commit/denoyey/Open-Redirect?style=for-the-badge\u0026logo=git)\n![Language](https://img.shields.io/github/languages/top/denoyey/Open-Redirect?style=for-the-badge\u0026color=informational)\n![Technologies](https://img.shields.io/badge/technologies-%20Python-yellow?style=for-the-badge\u0026logo=terminal)\n![Stars](https://img.shields.io/github/stars/denoyey/Open-Redirect?style=for-the-badge\u0026color=ffac33\u0026logo=github)\n![Forks](https://img.shields.io/github/forks/denoyey/Open-Redirect?style=for-the-badge\u0026color=blueviolet\u0026logo=github)\n![Issues](https://img.shields.io/github/issues/denoyey/Open-Redirect?style=for-the-badge\u0026logo=github)\n![Contributors](https://img.shields.io/github/contributors/denoyey/Open-Redirect?style=for-the-badge\u0026color=9c27b0)\n\n\u003cbr /\u003e\n\n\u003cimg src=\"https://api.visitorbadge.io/api/VisitorHit?user=denoyey\u0026repo=Open-Redirect\u0026countColor=%237B1E7A\u0026style=flat-square\" alt=\"visitors\"/\u003e\n\n\u003c/div\u003e\n\n\u003c/div\u003e\n\n## ๐Ÿ› ๏ธ Features\n- Multi-threaded scanning\n- Supports scanning single URLs or URL lists\n- Built-in payloads and redirect parameter list\n- Custom headers and user-agents\n- JSON and CSV export formats\n- Simple, CLI-based interface\n\n## ๐Ÿ–ฅ๏ธ Requirements\n- Python **3.8+**\n- Works on **Linux** and other\n- Internet connection (to test redirects)\n\n## ๐Ÿ“ฆ Installation\n```bash\ngit clone https://github.com/denoyey/Open-Redirect.git\ncd Open-Redirect\npip install -r requirements.txt\n```\n\n## ๐Ÿš€ Usage\nScan Single URL\n```bash\npython openredirect.py\n```\n\u003e Choose option [1] and input the target URL when prompted.\n\nExample:\n```bash\nhttps://example.com/redirect?url=\n```\n\n## ๐Ÿ“„ Scan from File\nPrepare a .txt file containing one URL per line, then:\n```bash\npython openredirect.py\n```\n\u003e Choose option [2] and enter the file path when prompted.\n\n## ๐Ÿงช Payloads \u0026 Parameters\n- **Payloads**: Over 50 encoded and obfuscated redirect payloads are used to test for various bypass techniques.\n- **Parameters**: Includes 60+ common redirect-related parameters like `url`, `redirect`, `next`, `target`, `dest`, and more.\n\u003e You can expand the list by modifying `bypass_payloads` and `redirect_params` in the script.\n\n## ๐Ÿ’พ Output Files\n- `result.json` โ€” JSON formatted scan results.\n- `result.csv` โ€” CSV formatted scan results.\n- `log.txt` โ€” Full scan log output.\n\n## ๐Ÿ™Œ Credits\nDeveloped by \u003ca href=\"https://github.com/denoyey\"\u003edenoyey\u003c/a\u003e. \u003cbr /\u003e\nBuilt for educational and ethical penetration testing purposes only. \u003cbr /\u003e\nContributions and pull requests are welcome!\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdenoyey%2Fopen-redirect","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdenoyey%2Fopen-redirect","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdenoyey%2Fopen-redirect/lists"}