Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Content
1. Software Introduction......................................................................................................2 2. Key Features...................................................................................................................3 2.1. POST Data Resend..............................................................................................3 2.2. Vulnerability Scanner............................................................................................6 2.3. SQL Injection.........................................................................................................8 2.3.1. POST SQL Injection....................................................................................8 2.3.2. Cookie SQL Injection Demo......................................................................10 2.3.3. Cross Site SQL Injection...........................................................................13 2.4. Cross Site Scripting.............................................................................................13 2.5. XPath Injection....................................................................................................15 2.6. Multi-functional Web Browser.............................................................................17 2.6.1. POST Web Browser..................................................................................17 2.6.2. Cookie Web Browser................................................................................19 2.7. Fill in Forms.........................................................................................................21 2.8. Report..................................................................................................................22 2.9. Escape Special Character Filter.........................................................................24 3. Order/Registration.........................................................................................................26 4. FAQ...............................................................................................................................26
1. Software Introduction
WebCruiser - Web Vulnerability Scanner
WebCruiser - Web Vulnerability Scanner, it is a powerful web security penetration test software that will aid you in auditing your site! It has a Vulnerability Scanner and a series of security tools. It can support scanning website as well as POC (Proof of concept) for web vulnerabilities: SQL Injection, Cross Site Scripting, XPath Injection etc. So, WebCruiser is also an automatic SQL injection tool, an XPath injection tool, and a Cross Site Scripting tool! Key Features: * Crawler(Site Directories And Files); * Vulnerability Scanner: SQL Injection, Cross Site Scripting, XPath Injection etc.; * SQL Injection Scanner; * SQL Injection Tool: GET/Post/Cookie Injection POC(Proof of Concept); * SQL Injection for SQL Server: PlainText/Union/Blind Injection; * SQL Injection for MySQL: PlainText/Union/Blind Injection; * SQL Injection for Oracle: PlainText/Union/Blind/CrossSite Injection; * SQL Injection for DB2: Union/Blind Injection; * SQL Injection for Access: Union/Blind Injection; * Post Data Resend;
* Cross Site Scripting Scanner and POC; * XPath Injection Scanner and POC; * Auto Get Cookie From Web Browser For Authentication; * Report Output. System Requirement: .Net Framework 2.0 or higher Software Disclaimer: * Authorization must be obtained from the web application owner; * This program will try to get each link and post any data when scanning; * Backup the database before scanning so as to avoid disaster. * Using this software at your own risk. E-mail: janusecurity@gmail.com http://sec4app.com http://www.janusec.com
2. Key Features
2.1. POST Data Resend
When you Post any data, WebCruiser will capture the Post data automatically. First, let's login a demo application:
Switch to tabpage "Resend", the Post data has been captured here :
Now, you can modify the post data and resend them. Let's try to use it for SQL Injection: First, modify the value of username to admin' and '1'='1
We got different response. It means that this application has a vulnerability of SQL Injection.
Or, select "Vulnerability Scanner" tool, and click "Scan Current Site":
4. Right click each vulnerabilities, then you can launch SQL Injection or Cross Site Scripting POC( Proof of Concept):
View Cookie:
Advanced: Input the following at Data box: username=111' union all select 1,current server,chr(97) from sysibm.sysdummy1-Note: 111 is a username that not exist. Press "Enter":
3. Usually your input will occur in the Response Code or in the refer page:
Usually, it is not necessary to do so. It is useful for these scenarios: A. Input box is read only; B. Copy and paste is disabled; C. Hidden or invisible input box; And so on.
2.8. Report
You can get the scan report by the report tool:
MySQL:
Oracle:
The above SQL can be instead by: Select COLUMN_NAME FROM user_tab_columns WHERE table_name= chr(97)|| chr(100)||chr(109)||chr(105)||chr(110)
3. Order/Registration
WebCruiser - Web Vulnerability Scanner Order page: http://sec4app.com/order.htm (Pay by RegNow) http://www.janusec.com/ (Pay by PayPal) If you like it, you can order it from RegNow or PayPal: Personal Edition (Non-Commercial License): https://www.regnow.com/softsell/nph-softsell.cgi?item=25854-1 Enterprise Edition (Commercial License): https://www.regnow.com/softsell/nph-softsell.cgi?item=25854-2 RegNow will send you the Registration Code. Alternative Payment by PayPal: http://www.janusec.com/ Thank you for choosing WebCruiser.
4. FAQ
Q: Why I can not run WebCruiser on my computer? A: It need Windows with .Net Framework 2.0 or above, if you have not installed .Net Framework, please download it from Microsoft web site. Usually, Windows XP and earlier has not .Net Framework installed, but Windows Vista and Windows 7 has .Net Framework Integrated already. The URL for .Net Framework 2.0 is: http://www.microsoft.com/downloads/details.aspx?FamilyID=0856EACB-4362-4B0D8EDD-AAB15C5E04F5&displaylang=en Q: What is the difference between the Professional and Enterprise Edition? A: They are different in License type. Personal Edition is for security professionals, masters of individual websites etc., non-commercial purpose, 12-month update and support service; Enterprise Edition is for enterprises, institution, or commercial organizations, 12month update and support service with top priority.
Function \ Edition Commercial License Directories Crawler Vulnerabilities Scanning SQL Server Injection MySQL Injection Oracle Injection DB2 Injection Advanced Injection Personal No Yes Yes Yes Yes Yes Yes Yes Enterprise Yes Yes Yes Yes Yes Yes Yes Yes
Access Injection Access Dictionary Edit Cross-Site Scripting XPath Injection Post Resend Multi-Site Scanning Sensitive WebSites Scanning Cookie Tool Report Technical Support
Yes Yes Yes Yes Yes Yes Yes Yes Yes 12-month
Yes Yes Yes Yes Yes Yes Yes Yes Yes 12-month