Tulpar – Python Web Application Vulnerability Scanner + Telnetlib

May 8, 2018 | Views: 8433

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

This brief tutorial/guide is just to provide you with some basic information about Tulpar and port scanning. Tulpar means winged horse in Turkish mythology. It is an open source web vulnerability scanner for written to make web penetration testing automated. Tulpar has the following features:

  • Sql Injection (GET Method)
  • XSS (GET Method)
  • Crawl
  • E-mail Disclosure
  • Credit Card Disclosure
  • Whois
  • Command Injection (GET Method)
  • Directory Traversal (GET Method)
  • File Include (GET Method)
  • Server Information
  • Technology Information
  • X-Content-Type Check
  • X-XSS-Protection Check
  • TCP Port Scanner
  • robots.txt Check
  • URL  Encode
  • Certification Information
  • Available Methods
  • Cyber Threat Intelligence
  • IP2Location
  • File Input Available Check

git clone https://github.com/anilbaranyelken/tulpar.git
cd tulpar
pip install -r requirements

python tulpar.py action web_URL action


full xss sql fuzzing e-mail credit-card whois links portscanner url

  • Encode cyberthreatintelligence command
  • Injection directory
  • Traversal file
  • Include header
  • Check certificate method
    IP2Location FileInputAvailable
    web_URL     URL

Github + Kitploit

*Bonus: Telnetlib Port Scanner

We will write a port scanner with python telnetlib module.

First of all we will import this module.
-> import telnetlib

After we will assign IP address to scan:

Related IP address and  port tries to read information banner.
->print “n”,str(port),” – “,baglanti.read_all().splitlines()[0] ->baglanti.close()

The complete code is as follows:

import telnetlib
for port in range(1,1024,1):
print “n”,str(port),” – “,baglanti.read_all().splitlines()[0] baglanti.close()


Share with Friends
Use Cybytes and
Tip the Author!
Share with Friends
Ready to share your knowledge and expertise?
Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge



Is Linux Worth Learning in 2020?
Views: 744 / December 14, 2019
How do I Get MTA Certified?
Views: 1315 / December 12, 2019
How much does your PAM software really cost?
Views: 1752 / December 10, 2019
How Do I Get into Android Development?
Views: 2142 / December 8, 2019

We recommend always using caution when following any link

Are you sure you want to continue?