Invisible Backdoor Detector
Invisible Backdoor Detector is a little Python script that allows you to spot and remove Bidi characters that could lead to an invisible backdoor. If you don’t know what that is you should check the related paragraph.
Table of Contents
- Table of contents
- What is an Invisible Backdoor
- Installation and Usage
What is an Invisbile Backdoor
Installation and Usage
python3 -m pip install -r requirements.txt python3 invisible-backdoor-detector.py path <path_to_codebase> [--remove]
The path argument is mandatory while the –remove argument allows you to automatically remove the spotted Bidi characters
The example folder provides a working example of an invisible backdoor in Node.js, you may test the script on that folder.
If you want to try out the backdoor you can add the following parameter to the query string:
Everyone is invited to contribute!
If you are a user of the tool and have a suggestion for a new feature or a bug to report, please do so through the issue tracker.
Developed by Angelo Delicato @SecSI
invisible-backdoor-detector is released under the MIT LICENSE