Questions about this topic? Sign up to ask in the talk tab.
Vanguard
From NetSec
Revision as of 03:46, 9 January 2012 by LashawnSeccombe (Talk | contribs) (→Application Dependencies)
The end-user is liable for his-or her own actions with the use of this software. Running this against a system you do not own without written authorization is a criminal act. |
Contents
Description
Vanguard is a comprehensive web pen testing tool that identifies vulnerabilities in web applications. |
Features
Main application features:
- Fully Configurable
- WebCrawlers crawl all open HTTP and HTTPS ports output from nmap
- LibWhisker2 For HTTP IDS Evasion (Same options as nikto)
- Tests via GET,POST, and COOKIE
- SQL injection
- LDAP Injection
- XSS
- File inclusion
- Command Injection
Usage
perl scan.pl -h [hostname] -e [evasion option]
Installation
Application Dependencies
- You must have nmap from http://nmap.org installed to run this application correctly.
Notice: You must run this application as root.
Protip: You can undo the root requirement by removing the check for root and modifying the nmap configuration.