[WEB SECURITY] First Pre-Release of WATOBO 0.9.9 available
Andreas Schmidt
webappsec at siberas.de
Sun Jul 1 07:18:51 EDT 2012
Hi everybody,
I've just pushed the first pre-release of WATOBO 0.9.9.pre1 to rubygems.org.
= WATOBO - The Web Application ToolBox
WATOBO is intended to enable security professionals to perform highly
efficient (semi-automated) web application security audits.
More details are available here:
http://sourceforge.net/apps/mediawiki/watobo/index.php
== NEW
* Time-based SQL injection module
* XSS module which gives a more accurate exploitability result
* ConversationTable: values in coloumn Parameters are url-decoded
* Added a WebCrawler Plugin based on Mechanize
* Manual Request Editor: Url is displayed in the window title
= Pre-Release Installation =
To get the pre-release of a gem you need to set the --pre switch.
Type the following command after you followed the general installation
instructions to get the latest release:
>gem install watobo --pre
= General Installation
== Windows
Simply follow the instruction on the project page:
http://sourceforge.net/apps/mediawiki/watobo/index.php?title=Main_Page#Installation
== BackTrack 5R2
On BackTrack you need to install additional gems. I wrote a little
installer script which can be found here:
http://siberas.blogspot.de/2012/06/installing-watobo-on-backtrack-5r2.html
If you find a bug, have a feature request or simply want to tell some
success stories please send a mail to watobo at siberas.de.
Thanks for your contribution!
Regards,
Andy
More information about the websecurity
mailing list