Websecurity is an very common problem in todays generation so there are many web vul scanner on internet by today we are going to learn about wapiti an web app security scanner
SPEC : Web Vul Scanner
Catogery : Web Scanner
Interface : CLI
DEFINITION :
wapiti is an tool used to find the web vulnarbilities in web apps written in php or html or aspx etc etc and its user frndlt
EXAMPLE:
TARGET : 127.0.0.1
PORT : 80
-----------------------------------------------------------------------------------------------------------------------
Wapiti http://127.0.0.1 --> General Scan
-----------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------------
wapiti -x http://server/base/admin/* --> exclude the Directory
-----------------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------
wapiti http://127.0.0.1 -c phpsessionid=231861181244 --> set Cookies to the scanner
-----------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------
wapiti http://127.0.0.1 --continue=file.xml --> continue Inpreted or Paused scan
-----------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------
wapiti http://127.0.0.1 -u --> show coloured/underlined outpu
-----------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------
wapiti http:// 127.0.0.1 -f localhost.html --> save scan results to html file
-----------------------------------------------------------------------------------------------------------------------
Thanks for explaining the usage of this web app security scanner. We are good in developing very secure mobile & web apps.
ReplyDelete