[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Release of webshag 1.00!

From: webshag@xxxxxxx
Subject: [WEB SECURITY] Release of webshag 1.00!
Date: Thu, 20 Mar 2008 10:25:42 +0100

Webshag is a free, multi-threaded, multi-platform web server audit tool.

Written in Python, it gathers commonly useful functionalities for web
server auditing like website crawling, URL scanning or file fuzzing. It
also provides innovative functionalities like the capability of
retrieving  the list of domain names hosted on a target machine and file
fuzzing using *dynamically* generated filenames (in addition to common
list-based fuzzing).

Webshag URL scanner and file fuzzer are aimed at reducing the number of
false positives and thus producing cleaner result sets. For this
purpose, webshag implements a web page fingerprinting mechanism
resistant to content changes. This fingerprinting mechanism is then used
in a false positive removal algorithm specially aimed at dealing with
"soft 404" server responses.

Webshag provides a full featured and intuitive graphical user interface
as well as a text-based command line interface.

It is freely downloadable (GPL license) for Linux and Windows platforms
from http://www.scrt.ch/pages_en/outils.html

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Prev by Date: [WEB SECURITY] WASC RSA Meet-Up 2008
Next by Date: [WEB SECURITY] WiKID Strong Authentication Server 3.0 released with updated web-app APIs
Previous by thread: [WEB SECURITY] WASC RSA Meet-Up 2008
Next by thread: [WEB SECURITY] WiKID Strong Authentication Server 3.0 released with updated web-app APIs
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site