Web應用安全審計工具:WATOBO

jopen 11年前發布 | 16K 次閱讀 WATOBO 測試工具

Web應用安全審計工具:WATOBO

WATOBO是一個Web應用程序工具箱,它是一個旨在幫助專業安全人員執行高效率的(半自動)Web應用程序安全審計的工具。它類似于一個本地代理,在運行中分析網絡通信尋找有用的信息和漏洞。它還具備自動掃描功能。能掃描SQL注入,跨站腳本和更多安全問題。

特性:

  • WATOBO has Session Management capabilities! You can define login scripts as well as logout signatures. So you don’t have to login manually each time you get logged out.
  • WATOB can act as an transparent proxy
  • WATOBO has anti-CSRF features
  • WATOBO can perform vulnerability checks out of the box.
  • WATOBO supports Inline De-/Encoding, so you don’t have to copy strings to a transcoder and back again. Just do it inside the request/response window with a simple mouse click.
  • WATOBO has smart filter functions, so you can find and navigate to the most interesting parts of the application easily.
  • WATOBO is written in (FX)Ruby and enables you to easiely define your own checks
  • WATOBO is free software ( licensed under the GNU General Public License Version 2)
  • It’s by siberas ;)

Web應用安全審計工具:WATOBO

項目主頁:http://www.baiduhome.net/lib/view/home/1365686761375

 本文由用戶 jopen 自行上傳分享,僅供網友學習交流。所有權歸原作者,若您的權利被侵害,請聯系管理員。
 轉載本站原創文章,請注明出處,并保留原始鏈接、圖片水印。
 本站是一個以用戶分享為主的開源技術平臺,歡迎各類分享!