Hello,
I need to do a pentest in a deployed Odoo system. Any resources for doing pestesting/ auditing in any version of Odoo?
Thanks in advance.
Odoo is the world's easiest all-in-one management software.
It includes hundreds of business apps:
- CRM
- e-Commerce
- Contabilidad
- Inventario
- PoS
- Proyectos
- MRP
Se marcó esta pregunta
2
Respuestas
3338
Vistas
Hello Julian,
You can use odoomap: https://github.com/MohamedKarrab/odoomap, it's a reconnaissance, enumeration, and pentesting tool for Odoo applications.
Features
- Detect Odoo version and metadata
- Enumerate databases and accessible models
- Authenticate and check CRUD permissions
- Extract data from specific models
- Brute-force login credentials & Master password
- Brute-force internal model names
And I can see that more features are getting added actively.
Hello,
You should have a look at this https://github.com/cyberwave-odoo/odooscan/ , feel free to contact us for support.
Kind regards
Jérôme Dewandre
¿Le interesa esta conversación? ¡Participe en ella!
Cree una cuenta para poder utilizar funciones exclusivas e interactuar con la comunidad.
Registrarse