Pages: [1]

Author Topic: Websecurify  (Read 815 times)

0 Members and 1 Guest are viewing this topic.

Online Axon

  • 0x1337
  • *****
  • Posts: 511
  • Karma: +49/-11
    • View Profile
Websecurify
« on: February 20, 2012, 01:27:09 PM »
Websecurify is a powerful web application security testing platform designed from the ground up to provide the best combination of automatic and manual vulnerability testing technologies.


]Some of the main features of Websecurify include:Available for all major operating systems (Windows, Mac OS, Linux) including mobile devices (iPhone, Android)
  • Simple to use user interface
  • Built-in internationalization support
  • Easily extensible with the help of add-ons and plugins
  • Moduler and reusable design based on the Weaponry Framework
  • Powerful manual testing tools and helper facilities
  • Powerful analytical and scanning technology




http://code.google.com/p/websecurify/
« Last Edit: February 20, 2012, 01:27:33 PM by Axon »
Logged

Online Factionwars

  • Administrator
  • 0x13338
  • *
  • Posts: 1039
  • Karma: +44/-2
    • View Profile
Re: Websecurify
« Reply #1 on: February 20, 2012, 01:42:38 PM »
tested it in the past, backtrack comes with it,   worth re-trying.
Logged

Offline neusbeer

  • Short
  • ***
  • Posts: 217
  • Karma: +18/-8
  • Gender: Male
  • Beer makes you stronger XD
    • View Profile
    • http://www.facebook.nl/hackneus
Re: Websecurify
« Reply #2 on: February 20, 2012, 05:54:28 PM »
Most handy part is that it can be used as a firefox or chrome plugin.
Thus can be ran within your browser.
I use it sometimes for fast checking without having to change my screen to another program :-)
I give it a 6+
Logged
--Neusbeer

Offline noob

  • Int
  • **
  • Posts: 122
  • Karma: +12/-0
    • View Profile
Re: Websecurify
« Reply #3 on: February 20, 2012, 11:00:21 PM »
WebCruiser is much better tool
Logged

Offline neusbeer

  • Short
  • ***
  • Posts: 217
  • Karma: +18/-8
  • Gender: Male
  • Beer makes you stronger XD
    • View Profile
    • http://www.facebook.nl/hackneus
Re: Websecurify
« Reply #4 on: February 22, 2012, 02:52:56 PM »
Quote from: noob on February 20, 2012, 11:00:21 PM
WebCruiser is much better tool
WebCruiser only identifies a few problems (sqli, xss)
this can do a lot more.
(WebCruiser is actualy very good in finding SQLi, I use it a lot)
Logged
--Neusbeer

Online Factionwars

  • Administrator
  • 0x13338
  • *
  • Posts: 1039
  • Karma: +44/-2
    • View Profile
Re: Websecurify
« Reply #5 on: February 22, 2012, 05:12:47 PM »
Quote from: neusbeer on February 22, 2012, 02:52:56 PM
WebCruiser only identifies a few problems (sqli, xss)
this can do a lot more.
(WebCruiser is actualy very good in finding SQLi, I use it a lot)
This tools is bad at advanced pentesting, it goes like woooop wooopp and scans it in not time, but there is not much detail, (as i experienced it)
Logged

Offline neusbeer

  • Short
  • ***
  • Posts: 217
  • Karma: +18/-8
  • Gender: Male
  • Beer makes you stronger XD
    • View Profile
    • http://www.facebook.nl/hackneus
Re: Websecurify
« Reply #6 on: February 22, 2012, 05:52:18 PM »
It found a lot of sqli in my case with webcruiser,
only the injection itself I use other programs/scripts.
Because it sucks with webcruiser.
and it only discovers the obvious injections..
« Last Edit: February 22, 2012, 05:52:52 PM by neusbeer »
Logged
--Neusbeer

Online Factionwars

  • Administrator
  • 0x13338
  • *
  • Posts: 1039
  • Karma: +44/-2
    • View Profile
Re: Websecurify
« Reply #7 on: February 22, 2012, 05:55:07 PM »
Quote from: neusbeer on February 22, 2012, 05:52:18 PM
It found a lot of sqli in my case with webcruiser,
only the injection itself I use other programs/scripts.
Because it sucks with webcruiser.
and it only discovers the obvious injections..
Ever experienced the power of apps like acunetix, w3af, etc. or am i totally wrong here?
Logged

Offline neusbeer

  • Short
  • ***
  • Posts: 217
  • Karma: +18/-8
  • Gender: Male
  • Beer makes you stronger XD
    • View Profile
    • http://www.facebook.nl/hackneus
Re: Websecurify
« Reply #8 on: February 22, 2012, 06:20:08 PM »
they all have purpose. but when searching for one thing why get the complete arsenal. like acunetix is for a lot more than sqli.
Logged
--Neusbeer

Offline noob

  • Int
  • **
  • Posts: 122
  • Karma: +12/-0
    • View Profile
Re: Websecurify
« Reply #9 on: February 23, 2012, 02:49:35 AM »
Quote from: Factionwars on February 22, 2012, 05:55:07 PM
Ever experienced the power of apps like acunetix, w3af, etc. or am i totally wrong here?

With WebCruiser you have extracted database with few steps from vulnerable server,you can upload web shell,so in my opinion like neusbeer said its best for SQLi.Acunetix,w3af are not so powerfull in SQLi area,they have others qualitys.
Logged

Online Factionwars

  • Administrator
  • 0x13338
  • *
  • Posts: 1039
  • Karma: +44/-2
    • View Profile
Re: Websecurify
« Reply #10 on: February 23, 2012, 12:30:55 PM »
Quote from: noob on February 23, 2012, 02:49:35 AM
With WebCruiser you have extracted database with few steps from vulnerable server,you can upload web shell,so in my opinion like neusbeer said its best for SQLi.Acunetix,w3af are not so powerfull in SQLi area,they have others qualitys.
Ahh, yes,   i think i misunderstood a post ;)
Logged

Offline zohraan

  • Char
  • *
  • Posts: 58
  • Karma: +1/-8
  • I am a learner in Computer Securities.
    • View Profile
Re: Websecurify
« Reply #11 on: April 01, 2012, 04:01:27 AM »
Acunetix has more features than a few, WebCruiser is also nice, I haven't used W3af, just know its an Exploitation Framework, also listed at sectools.org
Logged
-- Knowledge is Power --
Pages: [1]
 



Intern0t SoldierX py1337 SecurityOverride programisiai
Want to be here? Contact Ande or Satan911 on the forum or at IRC.