what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 15 of 15 RSS Feed

Files from Nicolas Surribas

Email addressnicolas.surribas at gmail.com
First Active2006-08-17
Last Active2021-12-20
Wapiti Web Application Vulnerability Scanner 3.0.9
Posted Dec 20, 2021
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: CLI has a new passive module option that allows you to use less aggressive modules only. WP_ENUM has improved detection of WordPress. New SSL module to check TLS/SSL configuration, powered by SSLyze. New Log4Shell attack module to detect the infamous vulnerability.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | bd64674b9152057bf1534ca7d7aab8cad4fccb1027813e0d0281f48823a82475
Wapiti Web Application Vulnerability Scanner 3.0.8
Posted Nov 30, 2021
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: The CLI now prevents users from using -a without specifying --ayth-type (and vice versa). The Crawler has upgraded HTTP related dependencies (httpx, httpcore, httpx-socks).
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 110d825ec7c2ba6a063398d63c1939d893f219fee6b5444c643f4b1cd9c71441
Wapiti Web Application Vulnerability Scanner 3.0.5
Posted May 17, 2021
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Boolean based blind SQL injection support added. Added CSV as output format for Report. Multiple changes to cookie support. Fixed a session issue. New modules relating to WordPress and Drupal.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | ee7d76549f3f237ce19d78280de108c705b1b1ecf62710a3a514ccacd508a5e8
Wapiti Web Application Vulnerability Scanner 3.0.4
Posted Feb 22, 2021
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Added more payloads for code execution. 5 new module updates. Additions to cross site scripting and SQL injection attacks. Various other updates.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 8b696753a37506f0c3e8f542cb60e9f8198bb1bafd1a1dc97fbb9592becf31f3
Wapiti Web Application Vulnerability Scanner 3.0.3
Posted Feb 24, 2020
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Work was performed to reduce false positives in XSS detections.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 059f778453ebf05b38e9c6c837d3b3eb9b8921c8fdc6d4029df89f2b0e84f5b7
Wapiti Web Application Vulnerability Scanner 3.0.2
Posted Sep 5, 2019
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: New XXE module can send payloads in parameters, query string, file uploads and raw body. New module for detection Open Redirect vulnerabilities (header based our HTML meta based or JS based). Many other additions, updates, and improvements.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 19c4b0b7e49e3622d46f478ce1290c904870d04e5246b89fdd371bc9830c6b2e
Wapiti Web Application Vulnerability Scanner 3.0.1
Posted May 13, 2018
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: New module mod_methods to detect interesting methods which might be allowed by scripts (PUT, PROPFIND, etc). New module mod_ssrf to detect Server Side Request Forgery vulnerabilities (requires Internet access). Improved mod_xss and mod_permanentxss modules to reduce false positives. Many other additions, updates, and improvements.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | bbb8c8f572afe77319734489a6ca0b211df4b87ad294db79b8bf0bda1c5aff29
Wapiti Web Application Vulnerability Scanner 3.0.0
Posted Jan 3, 2018
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Ported to Python3. Added --list-modules and --resume-crawl options. Persister rewritten to use sqlite3 databases (for session management). Many other additions, updates, and improvements.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 4708fa1d8159b0a5e606bdb26e1454e8df1d8bf6e11d9ad63c84e12e8edc8daa
Exploiting Sudo's Grace Period
Posted Nov 20, 2014
Authored by Nicolas Surribas

Whitepaper called Exploiting sudo's grace period. This paper goes into detail on how to leverage sudo's grace period against a user in order to escalate privileges once basic access is achieved on their account.

tags | exploit
SHA-256 | af812d842d2b770a4955b41d5fcdca2671ecab4b58892bc9f9c12e11541e39a7
Wapiti Web Application Vulnerability Scanner 2.3.0
Posted Nov 27, 2013
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Wapiti now use the python-requests module for HTTP instead of httplib2. More pythonic code. A HTTPResource class was created to simplify module writing. New template for the HTML report generator. Various other updates and improvements.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 6b836a4810f17b7eda4345fb12293112129961ba243140c72a8da0ac2572f4b4
Wapiti Web Application Vulnerability Scanner 2.2.0
Posted Dec 30, 2009
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Various options and modules added. Various bug fixes.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 144d89e555b859344c96a178d2e801d84b6fd6e8093a73373959bb3e613f6d3b
Wapiti Web Application Vulnerability Scanner
Posted Apr 6, 2009
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Added more patterns for file handling vulnerabilities in PHP. Added GET_SQL and POST_SQL as modules (-m) for attacks. Modified getcookie.py and cookie.py so they try to get the cookies even if cookielib fails.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 823eecb8c70146f01ed5cab7d2354bfb13402a9d85bd70259d21016e89d2497f
wapiti-1.1.4.zip
Posted Oct 14, 2006
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | fd1440c3dd88fe0786914fa27936b96f435cd2280e831bcbf6bbaccb1f6be0b4
wapiti-1.1.3.zip
Posted Aug 27, 2006
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Fixed a timeout bug.
tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | f72d00e477bd02a0bbf7d11453fcac3f71cce8bf9e33a4e2f302df067c4c61f3
wapiti-1.1.0.zip
Posted Aug 17, 2006
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

tags | tool, web, scanner, vulnerability
systems | unix
SHA-256 | 152d80defe45091ec4c68c29eae58bbb844caf87f53c6822cfdf8877a025f9c2
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close