A CLI or embedded tool for easily downloading IDOR'd files from a burp request or raw url.

This tool will enumerate the provided URL and download all responses under the correct file extension for later analysis.

Example statistics:

File extension incorrect or missing? Open an issue with an example response and expected behaviour

python -m pip install idox

Imagine you have a website that looks like the following:

https://domain.com/images/5/download
https://domain.com/images/6/download

Then you could use the following burp request:

request.txt

GET /images/{INJECT}/download HTTP/1.1
Host: domain.com

To IDOR all images with the id's from 0 to 100 like so

python -m idox file --request-file-path request.txt 100

Given it requires no auth, you can also enumerate all items with the following simpler syntax:

python -m idox url "https://domain.com/images/{INJECT}/download" 100

Imagine a site uses a predictable schema, but it's not 1, 2, 3, etc. This package allows you to instead replace the numeric sequencer with a file of id's to use.

We have created a file example_ids.txt which is our case is a list of UUID's we leaked from somewhere else out of scope. In order to use this within the program, all you'd need to do is the following command:

python -m idox url "https://blurp.skelmis.co.nz/{INJECT}" --sequence-file example_ids.txt

All of these would create an output directory which stores all the responses from your target site by response content type.

The following image contains an example output structure:

For further usage, see python -m idox --help or the data directory.

• Want realtime help? Join the discord here.
• This project is licensed under the MIT license
• Consider sponsoring me here