W3af
De Linuxmemo.
(Différences entre les versions)
(→Config) |
(→Config) |
||
| Ligne 24 : | Ligne 24 : | ||
w3af/plugins/output/config:html_file>>> view | w3af/plugins/output/config:html_file>>> view | ||
output_file ~/report.html File name where this plugin will write to | output_file ~/report.html File name where this plugin will write to | ||
| + | |||
| + | ==Script de démarrage== | ||
| + | # Basic startup script | ||
| + | plugins | ||
| + | output console,html_File | ||
| + | output | ||
| + | output config html_File | ||
| + | set verbosity 10 | ||
| + | back | ||
| + | output config console | ||
| + | set verbosity 5 | ||
| + | back | ||
| + | # could change this to audit all but just doing Cross Site Scripting Now | ||
| + | #target | ||
| + | #set target http://localhost:8081 | ||
| + | #back | ||
| + | |||
| + | ./w3af_console –s basic.w3af | ||
Version du 9 octobre 2014 à 12:40
Framework d'Attaque et d'Audit d'Application Web (w3af),
Install
git clone https://github.com/andresriancho/w3af.git
- Memo Python modules via proxy==
vim /tmp/w3af_dependency_install.sh
ajouter le proxy en httpS
sudo pip install --proxy "https://xxx.xxx.xxx.xxx:8080" module
si nécessaire
sudo pip install --proxy "https://xxx.xxx.xxx.xxx:8080" --timeout 30 module
Config
- plugin output
w3af>>> plugins w3af/plugins>>> output console,html_file w3af/plugins>>> output config html_file w3af/plugins/output/config:html_file>>> w3af/plugins/output/config:html_file>>> help w3af/plugins/output/config:html_file>>> view
output_file ~/report.html File name where this plugin will write to
Script de démarrage
# Basic startup script plugins output console,html_File output output config html_File set verbosity 10 back output config console set verbosity 5 back # could change this to audit all but just doing Cross Site Scripting Now #target #set target http://localhost:8081 #back
./w3af_console –s basic.w3af
