June 1, 2011   Tools, Vulnerabilities, Web Security   71 Comments

Web Application Attack and Audit Framework 1.0 Rleased

Web Application Attack and Audit Framework (w3af) released a new stable version, the project aims to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. In this latest release we find some important improvements include:

  • Stable code base, an improvement that will reduce your w3af crashes to a minimum.
  • Auto-Update, which will allow you to keep your w3af installation updated without any effort. Always get the latest and greatest from w3af contributors!
  • Web Application Payloads, for people that enjoy exploitation techniques, this is one of the most interesting things you’ll see in web application security! W3af created various layers of abstraction around an exploited vulnerability in order to be able to write payloads that use emulated syscalls to read, write and execute files on the compromised web server.
  • PHP static code analyzer, as part of a couple of experiments and research projects, Javier Andalia created a PHP static code analyzer that performs tainted mode analysis of PHP code in order to identify SQL injections, OS Commanding and Remote File Includes. At this time you can use this very interesting feature as a web application payload. After exploiting vulnerability try: “payload php_sca”, that will download the remote PHP code to your box and analyze it to find more vulnerabilities!

you can download Web Application Attack and Audit Framework on Sourceforge.

make sure you subscribe to my RSS feed!

Related Posts:

Share
, , ,
Subscribe
Notify of
guest
71 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPrs #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqR #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqV #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqL #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0j #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThNx6 #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0c #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit… http://goo.gl/fb/8eV7D

0
trackback

#Security #infosec Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Fra… http://bit.ly/k7jXcc

0
trackback

#Security #infosec Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Fra… http://bit.ly/k7jXcc

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThNx6 #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0c #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit… http://goo.gl/fb/8eV7D

0
trackback

#Security #infosec Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Fra… http://bit.ly/k7jXcc

0
trackback

#Security #infosec Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Fra… http://bit.ly/k7jXcc

0
trackback

RT @sectechno: Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/krVRdU #security #infosec #W3AF

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/krVRdU

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPsD #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit Framework (w3af) releas… http://bit.ly/k7jXcc

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit Fram… http://bit.ly/k7jXcc #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit Framework (w3af) releas… http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased | SecTechno http://ow.ly/1cZcLN

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased | SecTechno http://ow.ly/1cZcLN

0
trackback

#Web #Application #Attack and #Audit #Framework 1.0 Rleased http://bit.ly/lDwZkd #security

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased | SecTechno http://ow.ly/1cZcLN

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/krVRdU

0
trackback

RT @sectechno: Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/krVRdU #security #infosec #W3AF

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit Fram… http://bit.ly/k7jXcc #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit Framework (w3af) releas… http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased | SecTechno http://ow.ly/1cZcLN

0
trackback

#Web #Application #Attack and #Audit #Framework 1.0 Rleased http://bit.ly/lDwZkd #security

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Framework (w3af) relea… http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/k7jXcc

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0c #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0c #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqR #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqR #infosec

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Framework (w3af) relea… http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased:
Web Application Attack and Audit Framework (w3af) relea… http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased http://bit.ly/k7jXcc

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit… http://goo.gl/fb/8eV7D

0
trackback

Web Application Attack and Audit Framework 1.0 Rleased: Web Application Attack and Audit… http://goo.gl/fb/8eV7D

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0j #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThP0j #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqV #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqV #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqR #infosec

0
trackback

#security Web Application Attack and Audit Framework 1.0 Rleased http://dlvr.it/ThPqR #infosec

0