WebSpidah
Published on 2007-09-06 20:33:40.
Description
WebSpidah is a tactical WASS (Web Application Security Scanner) written in PHP.It has an interactive shell as a user interface, much like the MSF, and a modularized, XML-based, vulnerability recon system.
WebSpidah is released under the GPL license.
Contents
[Hide]Content
GeneralWebSpidah is, currently, an one person effort, mine (Zapotek).
The main purpose of the projet is to provide the community with a portable, tactical and affordable web application security scanner.
It is still in its early stages but is under heavy development.
It is written in the PHP scripting language & XML.
Features
A feature list follows:
- Interactive shell interface
- Modular vulnerability recon system
- GET/POST/COOKIE HTTP request support
- Header tracking
- Extensive transfer information
- Proxy tunneling (HTTP/SOCKS5)
- OS Independent/Multiplatform
- Support for colour highlighted output
Requirements
PHP >= 5
License
WebSpidah is licensed under the GNU General Public License v2.
Disclaimer
WebSpidah is free software and you are allowed to use it as you see fit.
However, I can't be held responsible for your actions nor any damage
made by the use of this software.
Releases
| Version | Stage | Description | Filename | Download |
|---|---|---|---|---|
| 0.1 | alpha | Checkout the latest SVN version. | ?group_id=181282 |
|
Screenshots
Sample command output.
Modules list and info about a specified module.
The first thing you see when you fire up WebSpidah's shell.
Audit output as it appears on the WebSpidah shell.