Best tools for web-pentesting (vulnerability scanning)
by MrBr - November 17, 2019 at 05:42 AM
[Image: mk0NE06.png]
OWASP Zed Attack Proxy (aka zaproxy) does a lot of what Burp Suite can do, but it has a HUD that allows you to scan on-the-go as you browse the web.
If you're using Kali Linux, install it with

Quote:apt install zaproxy

Else, you can download it from the official site, here is some links.

OWASP Zed Atttack Proxy Project website
OWASP Foundation
OWASP ZAP core git

[Image: FMafKU4.png]

WPScan is a vulnerability scanner for Wordpress. It is efficient, albeit specific to its platform. It does a lot of things, such as plugin enumeration, theme detection, and version disclosure.

In Kali Linux, use

Quote:apt install wpscan
man wpscan
wpscan -h

Some links.
WPScan Wordpress plugin

[Image: 4TUiQCU.png]

Lastly, I know this is not exactly a vulnerability scanner, but sometimes shows CVE vulnerabilities for certain targets. It comes in useful for bug bounty hunters early on, when there are still many low-hanging fruit.

In Debian, use

Quote:apt-get install python python-pip
pip install shodan
shodan init <API key>

Or you can use it by visiting the official website online.

More tools

nikto, nmap, script http-headers, http-enum
running these across a list of targets can easily gives you some nice finding like availability of phpmyadmin, phpinfo file, etc.

And These are for privilege escalation (Local scan)
source article : Linux Privilege Escalation Scripts
GitHub - rebootuser/LinEnum: Scripted Local Linux Enumeration & Privilege Escalation Checks

These are for aws
pacu : GitHub - RhinoSecurityLabs/pacu: The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
nimbostratus : Nimbostratus

And There is DirBuster for finding files and Directories in the website.

Good luck.
t'anks for dis, so muchusefull stuff
(November 17, 2019 at 09:36 AM)aidenbastow Wrote: t'anks for dis, so muchusefull stuff

You're welcome, its really a pleasure that this is useful for you, thanks for replying.
Thanks, Nessus is another good vuln scanner
BurpSuite is also another tool that is super useful when it comes to pentesting.

Possibly Related Threads…
Thread Author Replies Views Last Post
Pentesting Collection adamhlozek 26 793 45 minutes ago
Last Post: Thinkpadx230
Web Application Pentesting tokyoghoul 0 107 October 08, 2021 at 08:19 AM
Last Post: tokyoghoul
Basic Pentesting - For people to start maybe help LusoLeader 0 141 October 04, 2021 at 04:22 AM
Last Post: LusoLeader

 Users browsing this thread: 1 Guest(s)