{"id":712,"date":"2008-01-16T07:22:16","date_gmt":"2008-01-16T07:22:16","guid":{"rendered":"https:\/\/www.darknet.org.uk\/2008\/01\/w3af-fifth-beta-for-download-automated-web-auditing-and-exploitation-framework\/"},"modified":"2015-09-09T19:39:40","modified_gmt":"2015-09-09T11:39:40","slug":"w3af-fifth-beta-for-download-automated-web-auditing-and-exploitation-framework","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2008\/01\/w3af-fifth-beta-for-download-automated-web-auditing-and-exploitation-framework\/","title":{"rendered":"w3af Fifth BETA for Download &#8211; Automated Web Auditing and Exploitation Framework"},"content":{"rendered":"<p>[ad]<\/p>\n<p>As you all seem to pretty interested in <a href=\"https:\/\/www.darknet.org.uk\/tag\/inguma\/\">Inguma<\/a>, there&#8217;s something else similar called w3af &#8211; the fifth BETA was released a while back and the team are now working on the sixth.<\/p>\n<p>w3af is a Web application attack and Audit Framework. The project goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and<\/p>\n<p>We did mention when it was first released &#8211; <a href=\"https:\/\/www.darknet.org.uk\/2007\/08\/w3af-web-application-attack-and-audit-framework\/\">w3af &#8211; Web Application Attack and Audit Framework<\/a>.<\/p>\n<p>There are a lot of small changes, but the basic and bigger ones are:<\/p>\n<ul>\n<li>Virtual daemon, a way to use Metasploit framework payloads\/shellcodes while exploiting web applications.<\/li>\n<li>w3afAgent, a reverse VPN that allows you to route packets through the compromised server<\/li>\n<li>Good samaritan, a module that allows you to exploit blind sql injections much faster<\/li>\n<li>20+ new plugins<\/li>\n<li>A lot of bug fixes<\/li>\n<li>A much more stable core.<\/li>\n<\/ul>\n<p>A full plugin list is here:<\/p>\n<p><a href=\"http:\/\/w3af.sourceforge.net\/pluginDesc.php\">w3af &#8211; Plugins<\/a><\/p>\n<p>The users guide can be found here:<\/p>\n<p><a href=\"http:\/\/w3af.sourceforge.net\/documentation\/user\/w3afUsersGuide.pdf\">w3afUsersGuide.pdf<\/a><\/p>\n<p>The author has also uploaded the presentation material he made for the T2 conference in Finland &#8211; this can serve as a good introduction. <\/p>\n<p><a href=\"http:\/\/w3af.sourceforge.net\/documentation\/user\/w3af-T2.pdf\">w3af-T2.pdf<\/a><\/p>\n<p>You can download w3af here:<\/p>\n<p><a href=\"http:\/\/sourceforge.net\/project\/showfiles.php?group_id=170274&#038;package_id=194268&#038;release_id=548053\">w3af BETA5<\/a><\/p>\n<p><!--adsense#New468--><\/p>\n<p>Or read more <a href=\"https:\/\/www.darknet.org.uk\/2007\/08\/w3af-web-application-attack-and-audit-framework\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[ad] As you all seem to pretty interested in Inguma, there&#8217;s something else similar called w3af &#8211; the fifth BETA was released a while back and the team are now working on the sixth. w3af is a Web application attack and Audit Framework. The project goal is to create a framework to find and exploit [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[2,9,15],"tags":[2302,2300,1522,284,439,2298,2299,2301],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/712"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=712"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/712\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=712"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=712"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=712"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}