w3af Framework to help you with your development
Download

w3af Ranking & Summary

w3af Tags

audit Development Framework Framework vulnerability LMS file explore jar file mobile simple loan agreement flashfxp 3.6.rc2 opera mini free zune converting super www.spy buddy.com www.isms.co.zm.com microsoft outlook drip xlsm viewer android ibackupbot crack windows dbdesigner 4 4.0

w3af Description

w3af is intended to help developers identify vulnerabilities within their web applications, which could be exploited by cyber-criminals to deploy malware components on user's computers. It delivers a powerful framework that can be integrated within a project, fully controllable via the user-friendly GUI.Find vulnerabilities in web applicationsThanks to the integrated plugin system, the framework is capable of finding injection points (using the discovery plugins) and send special packs of data to them in order to discover vulnerabilities (with the help of the audit plugins). It can identify SQL injection weaknesses, bugs in HTTP headers, cross-site scripting, easy to guess credentials, application errors and weak PHP configurations. Aside from the aforementioned categories, there are various plugin types that work together in order to secure a web-based application. Grep plugins process HTTP requests and analyze all data traffic, mangle plugins can modify requests using regular expressions, evasion plugins try to bypass intrusion rules, while the exploit plugins use the discovered weak points in order to find solutions. Create the optimal scan profileIt is advisable to take the time to understand what each plugin type does, in order to create the perfect scan profile to detect all the vulnerabilities and make your web-based application more secure. A new profile can be created manually or by using the integrated wizard, which tries to create a sketch of the web infrastructure and determine the optimal combination of plugins. Thanks to the integrated SpiderMan script, w3af can also web applications that rely on technologies such as JavaScript, Flash or Java. Moreover, it can parse WSDL files and manage web services. A reliable security tool for web developersw3af is a useful tool for developers of web-based applications, providing a fast and accurate way to detect weaknesses that could cause security issues. Its goal is to help them search for vulnerabilities, providing a framework that can be further extended and enhanced. Reviewed by Mihaela Citea, last updated on April 8th, 2014

w3af Related Software