It is a Python-based web application scanner that collects #OSINT and fuzzes a target website for OWASP vulnerabilities.

BlackWidow is a web application spider written in Python that collects subdomains, URLs, dynamic parameters, email addresses, and phone numbers from a target website. An Inject-X fuzzer is included in this project to scan dynamic URLs for known OWASP vulnerabilities.


  1. Collect all URLs from a target website automatically
  2. Collect all dynamic URLs and parameters from a target website automatically
  3. Collect all subdomains from a specified website automatically
  4. Collect all phone numbers from a target website automatically
  5. Collect all email addresses from a given website automatically
  6. Collect all form URLs from a target website automatically
  7. Scan/fuzz for common OWASP TOP vulnerabilities automatically.
  8. Saves all data into sorted text files automatically.

Disclaimer: The intended use for the tool is strictly educational and should not be used for any other purpose.

Download Link:

Leave a Reply

Your email address will not be published.

Write for Us

    Maintenance Notice

    The site is under maintenace some features might not work, inconvinience deeply regretted.

    Get in Touch To get Free Demo

    We are available 24 * 7, Contact Us and Avail Exciting Discount Offers​