WebCruiser - Web 安全扫描工具
附件已过期,最新版本(2015年2月16日版本为V3.3.0)请移步官网(janusec)下载。以下为V3版本的简介:WebCruiser-Web漏洞扫描器,是一款常实用的Web安全扫描工具,可以扫描SQL注入(SQL注入),CrossSiteScripting(跨站),LocalFileInclusion(本地文件包括),RemoteFileInclusion(远程文件包括),Redirect(重定向)等等,而且支持漏洞的POC(ProofofConcept,概念验证).与其它Web漏洞扫描器比较,WebCruiser最典型的属性是可以依据设置,只扫描指定的漏洞类型,指定的URL,或者指定的页面,一般这是其它扫描器并不具备的。关键特性:爬虫(站点目录及文件).
漏洞扫描器:SQL注入(SQL注入),CrossSiteScripting(跨站),LFI(本地文件包括),RFI(远程文件包括),Redirect(重定向)等.
漏洞评价使用WAVSEPv1.5SQL注入XSS测试用例100%通过.
SQL注入POC工具,支持SQLServer,MySQL,Oracle,DB2,Access.
POC工具(XSS,LFI,RFI,Redirect等).
重放测试工具.
暴力破解工具.
Cookie工具.系统需要:.NET结构2.0以上,IE8以上最新版本请移步官网(janusec)下载。
(The attachment has expired. Please move to the official website (janusec) to download the latest version (version V3.3.0 on February 16, 2015). The following is an introduction to the V3 version: WebCruiser-Web Vulnerability Scanner, is a very useful web security scanning tool that can scan for SQL injection (SQL injection), CrossSiteScripting (cross-site), LocalFileInclusion (local file inclusion), RemoteFileInclusion (remoteFileInclusion) File includes), Redirect (redirect), etc., and supports the POC (ProofofConcept, proof of concept) of the vulnerability. Compared with other Web vulnerability scanners, the most typical attribute of WebCruiser is that it can scan only the specified vulnerability types according to the settings, specify URL, or the specified page, which is generally not available in other scanners. Key Features:
Crawlers (site directories and files).
Vulnerability scanner: SQL injection (SQL injection), CrossSiteScripting (cross-site), LFI (local file inclusion), RFI (remote file inclusion), Redirect (redirect), etc.
Vulnerability evaluation using WAVSEPv1.5SQL injection XSS test cases passed 100%.
SQL injection POC tool, support SQLServer, MySQL, Oracle, DB2, Access.
POC tools (XSS, LFI, RFI, Redirect, etc.).
Replay test tool.
Brute-force cracking tools.
Cookie tool. System requirements: .NET structure 2.0 or above, the latest version of IE8 or above, please go to the official website (janusec) to download.)
页:
[1]