metasploit series 2: Scan vulnerability website by wmap
tts
Hi all, today i'm going to demo how to scan vulnerability by wmap.
WMAP is a feature-rich web application vulnerability scanner that was originally created from a tool named SQLMap.
This tool is integrated with Metasploit and allows us to conduct web application scanning from within the Metasploit Framework.
Requirement:
- Installed metasploit (https://www.metasploit.com/download).
- Installed postgresql
- Installed nmap. (https://nmap.org/download.html)
Step 1: Start postgresql and open metasploit:
sudo service postgresql start
If you haven't been import database metasploit, then we import:
sudo msfdb init
msfconsole
Step 2: load wmap
load wmap
Step 3: view help
help
Step 4: Get ip from web target, we open new tab to check ip
nmap -sV #domain
Step 5: We first need to add a new target URL by passing the -a switch to wmap_sites
wmap_sites -h
wmap_sites -a #IP_TARGET
Step 6: Afterwards, running wmap_sites -l will print out the available targets.
wmap_sites -l
Step 7: Next, we add the site as a target with wmap_targets.
wmap_targets -h
wmap_targets -t http://#IP_TARGET/mutillidae/index.php
Step 8: Once added, we can view our list of targets by using the -l switch from the console.
wmap_targets -l
Step 9: Use wmap_run command will scan the target system.
wmap_run -h
wmap_run -t
Step 10: All that remains now is to actually run the WMAP scan against our target URL.
wmap_run -e
Step 11: Once the scan has finished executing, we take a look at the database to see if WMAP found anything of interest.
wmap_vulns -l
Step 12: Looking at the above output, we can see that WMAP has reported one vulnerability. Running vulns will list the details for us.
vulns
This video made by SP vietnam.
fanpage: https://www.facebook.com/securitiesprofessionals.vn
facebook: https://www.facebook.com/profile.php?id=100015328275156
email: softwareprofessionalsvietnam@gmail.com
source
Gloss