Bishop - A Tool That Allows You to Scan Websites for Vulnerabilities While You Browse
Bishop is a tool that allows you to scan websites for vulnerabilities while you browse. With its web browsing mode, it can automatically scan websites while you browse the web. It can check websites for vulnerabilities and for files that contain information such as passwords, credentials, source code, and more.
It works by running an internal spider that parses websites for files with a given path on the current URL path and all parent paths. It's searching for these files to find out if there are any vulnerabilities that can be exploited. If there is a match, it alerts you so that you can find and fix the vulnerability before it's used to hack your site.
Bishop's rules are regular expressions that run on specified directories. If you can turn them into a regular expression, you can run it against a website.
Bishop supports whitelisting, where it runs requests only for websites that you authorize it to scan. It's based on a background XHR request, so network throughput is never compromised.
