wascan
WAScan ((W)eb (A)pplication (Scan)ner) is a Open Source web application security scanner. It is designed to find various vulnerabilities using black-box method, that means it won’t study the source code of web applications but will work like a fuzzer, scanning the pages of the deployed web application, extracting links and forms and attacking the scripts, sending payloads and looking for error messages,..etc.
Name:wascan
Category:Scanners
Publisher:trickest
Created:6/23/2021
Container:
quay.io/trickest/wascan:cf2f61dOutput Type:
License:Unknown
Source:View Source
Parameters
-aHTTP Basic Authentication (user:pass)-dData to be sent via POST method-hHTTP Host header value-pUse a proxy, (host:port)-cHTTP Cookie header value-HExtra Headers (e.g: Host:site.com)-RHTTP Referer header value-tSeconds to wait before timeout connection-nSet redirect target URL False (default=True)-bBruteforce hidden parameters-PProxy Authentication, (user:pass)-uTarget URL-AHTTP User-agent header value-mHTTP method, GET or POST-sChoose scan option: 0 - Fingerprint, 1 - Attacks, 2 - Audit, 3 - Bruteforce, 4 - Disclosure, 5 - Full scan-rUse random User-agent header value