Overview

Request 565857 accepted

- Update to version 3.0.0:
* This new release now relies on Python 3.
* A session mechanism using sqlite3 allows you to stop the scan
or/and attacks and resume them later.
* The new behavior, when you stop Wapiti during the attack
process (with Ctrl+C), is to let you choose between continuing,
moving to the next attack-module, exiting with or without
generating the report.
* A total of 9 options can now help you to finely control the
scanner by fixing the maximum allowed depth of crawling,
skipping parameter names of your choice in URLs and forms,
setting the maximum delay for scanning, choosing between 6
modes of scan force, and more!
* The SOCKS5 proxy support is also back in this release.
* Improvements have been made to existing attack modules. For
example by reducing false-positives for the blind sqli attack
module.
* Two new attack modules were added: buster (for
directory/filename brute forcing) and shellshock (not really
new but here it is).
* Some options changed. The base URL must now be given through
the -u option.
- New runtime dependencies:
* python3-Mako
* python3-PySocks
* python3-lxml
* python3-tld
* python3-yaswfp
- Clean spec file with spec-cleaner.

Loading...


Request History
Antoine Belvire's avatar

1Antoine1 created request

- Update to version 3.0.0:
* This new release now relies on Python 3.
* A session mechanism using sqlite3 allows you to stop the scan
or/and attacks and resume them later.
* The new behavior, when you stop Wapiti during the attack
process (with Ctrl+C), is to let you choose between continuing,
moving to the next attack-module, exiting with or without
generating the report.
* A total of 9 options can now help you to finely control the
scanner by fixing the maximum allowed depth of crawling,
skipping parameter names of your choice in URLs and forms,
setting the maximum delay for scanning, choosing between 6
modes of scan force, and more!
* The SOCKS5 proxy support is also back in this release.
* Improvements have been made to existing attack modules. For
example by reducing false-positives for the blind sqli attack
module.
* Two new attack modules were added: buster (for
directory/filename brute forcing) and shellshock (not really
new but here it is).
* Some options changed. The base URL must now be given through
the -u option.
- New runtime dependencies:
* python3-Mako
* python3-PySocks
* python3-lxml
* python3-tld
* python3-yaswfp
- Clean spec file with spec-cleaner.


Marcus Meissner's avatar

msmeissn accepted request

ok

openSUSE Build Service is sponsored by