Advanced Automated IDOR Detection Tool
Built for Pentesters & Bug Bounty Hunters
IDOR-Hunter is an advanced automation tool designed to detect
Insecure Direct Object Reference (IDOR) vulnerabilities across:
- 🌐 Web Applications
- 🔌 APIs
- 🔐 JWT-based Authentication Systems
- ⚡ GraphQL Endpoints
✨ Core Capabilities
- 🔢 Numeric ID Fuzzing
- 🧬 UUID Fuzzing
- 📬 POST Request Fuzzing
- 🔍 Automatic ID Parameter Discovery
- 📊 Response Diff Analysis
✨ Advanced Testing
- 🔐 JWT Token ID Manipulation
- ⚡ GraphQL IDOR Detection
- 🍪 Cookie-based Authentication Support
- 🪪 Header-based Authentication
- 📂 Burp Request Import
✨ Built for Performance
- ⚙️ Cross Platform (Windows / Linux / macOS)
- 🚀 Fast & Lightweight
- 🧠 Smart Detection Logic
def print_banner():
banner = r"""
██╗██████╗ ██████╗ ██████╗ ██╗ ██╗██╗ ██╗███╗ ██╗████████╗███████╗██████╗
██║██╔══██╗██╔═══██╗██╔══██╗ ██║ ██║██║ ██║████╗ ██║╚══██╔══╝██╔════╝██╔══██╗
██║██║ ██║██║ ██║██████╔╝ ███████║██║ ██║██╔██╗ ██║ ██║ █████╗ ██████╔╝
██║██║ ██║██║ ██║██╔══██╗ ██╔══██║██║ ██║██║╚██╗██║ ██║ ██╔══╝ ██╔══██╗
██║██████╔╝╚██████╔╝██║ ██║ ██║ ██║╚██████╔╝██║ ╚████║ ██║ ███████╗██║ ██║
╚═╝╚═════╝ ╚═════╝ ╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝ ╚═╝ ╚══════╝╚═╝ ╚═╝
🔐 IDOR-Hunter
Advanced IDOR Detection Framework
by Anand Mahajan
"""
print(banner)