Arachni is an open source framework that is used to evaluate the web applications security by performing active and … [Read More...]
Featured Articles
W3af –Web Applications Security Auditing Framework
W3af is an open source framework used for testing web applications security. The framework is capable of detecting more … [Read More...]
Vega –Web Applications Scanner with Proxy Features
Vega is a GUI based open source tool used for analyzing vulnerabilities in web applications. The tool has two main … [Read More...]
Latest Blog Updates
Loading...Arachni Scanner –Web Applications Security Evaluation Framework
Arachni is an open source framework that is used to evaluate the web applications security by performing active and passive security analysis. The active security checks include detection of SQL injection, blind SQL injection, NoSQL injection, CSRF detection, code injection, LDAP injection, path traversal, OS command injection, XPATH injection, remote file inclusion test, XSS, and DOM XSS attacks analysis. The OS command injection is analyzed against nix, BSD, IBM AIX, and Windows system. The XPATH injection analysis is performed for Generic, PHP, dotNET, Java, and libXML2 scripts. Similarly in the passive … [Read More...]
W3af –Web Applications Security Auditing Framework
W3af is an open source framework used for testing web applications security. The framework is capable of detecting more than 200 vulnerabilities. Some of these include SQL injection, Buffer overflow vulnerabilities, CSRF, LDAP injection, Cross Site Scripting (XSS), Xpath injection, eval () injection, OS commanding, local file inclusion, remote file inclusion, and discovery of sensitive data. W3af analyzes these vulnerabilities by using built-in plugins. W3af Installation All W3af versions are supported by Linux and MAC OS. However, the Windows users can only use the older versions of W3af as there is no … [Read More...]
Vega –Web Applications Scanner with Proxy Features
Vega is a GUI based open source tool used for analyzing vulnerabilities in web applications. The tool has two main functionalities i-e Scanner and Proxy. The scanner automatically fetches links from web applications to test the vulnerabilities. Vega uses two types of modules to perform the vulnerabilities assessment. These are called Injection modules and Response processing modules. The Injection modules include blind SQL injection, XML injection, HTTP trace probes, Local File Inclusion (LFI), Remote File Inclusion (RFI), Shell injection checks, HTTP header injection, OS command injection, blind XPath … [Read More...]
Wifi-Pumpkin –MITM Framework for Auditing Wifi Security
Wifi-Pumpkin is an open source framework that can simulate wifi attacks by creating fake wireless networks. The framework is capable of analyzing the traffic passing through these fake networks. The types of attacks that can be launched with Wifi-Pumpkin include Rogue Access Points, ARP Poisoning, phishing attack, Windows update attack, DNS proxy attack, de-authentication attack, image capturing, Wifi Probe request, and DHCP starvation. Wifi-Pumpkin has built-in modules to launch these attacks. Wifi-Pumpkin Installation Wifi-Pumpkin is a python tool that has been tested with Kali Linux, WifiSlax, Ubuntu, … [Read More...]
How to setup OpenVPN Server on your Linux Server
OpenVPN is one of the best free and open source VPN protocols available. It is used for remote access, securing IoTs, IT services and data communication. It is a cross platform product and is available for Windows, iOS, Linux and many other Unix like operating systems. Setting Up Linux OpenVPN Server Here we'll look at how to set up our own Virtual Private Server using OpenVPN. For this you'll need a Linux or Windows Server (Amazon EC2 etc) but you can test OpenVPN on your Linux PC. We'll use Amazon EC2 Debian Server Free tier in this example. Connect to your Server using SSH or any other … [Read More...]
Like Us On Facebook
Become a Member
