Questions about this topic? Sign up to ask in the talk tab.

Difference between revisions of "Main Page/Featured Tool"

From NetSec
Jump to: navigation, search
Line 1: Line 1:
<center><big>'''[[Lfi autopwn.pl]]'''</big></center>
+
<center><big>'''[[Vanguard]]'''</big></center>
  
This [[Perl|perl]] script requires '''LibWhisker2''' (bundled with '''nikto''') for [[IDS Evasion]] and exploits [[File inclusion|local file inclusion]], a form of [[Web Exploitation|web exploitation]].  All other libraries are standard.  Lfi_autopwn comes loaded with a variety of log locations, however the user may add their own through the configuration files.
+
Vanguard is an extensible utility with module support built for testing different types of [[web exploitation]] on a given domain.
 +
'''Main application features:'''
 +
* Fully Configurable
 +
* WebCrawlers crawl all open [[HTTP]] and HTTPS ports output from nmap
 +
* LibWhisker2 For [[HTTP]] [[IDS Evasion]] (Same options as nikto)
 +
* Tests via GET,POST, and COOKIE
 +
'''[[Web Exploitation|Web penetration tests]]:'''
 +
* [[SQL injection]]  (This test is signature free!)
 +
* LDAP Injection
 +
* [[XSS]]
 +
* [[File inclusion]]
 +
* [[Command Injection]]
  
<center>'''''[[Lfi autopwn.pl|Learn more - Lfi autopwn.pl]]'''''</center>
+
<center>'''''[[Vanguard|Learn more - Vanguard]]'''''</center>

Revision as of 02:29, 17 September 2012

Vanguard

Vanguard is an extensible utility with module support built for testing different types of web exploitation on a given domain. Main application features:

  • Fully Configurable
  • WebCrawlers crawl all open HTTP and HTTPS ports output from nmap
  • LibWhisker2 For HTTP IDS Evasion (Same options as nikto)
  • Tests via GET,POST, and COOKIE

Web penetration tests:

Learn more - Vanguard