OWTF 1.0 “Lionheart” released : is a project focused on penetration testing efficiency and alignment of security tests to security standards.
OWASP OWTF, the Offensive (Web) Testing Framework is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient.OWASP OWTF, the Offensive (Web) Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient.
Changes For latest Version :
–Updated version name and added GSoC participants.
–[core] Added dependency check for owtf pip libraries.
–Kali Linux ready
–OWTF has been developed keeping Kali Linux in mind, but it also supports other pentesting distros such as Samurai-WTF, etc.
–Tool paths and configuration can be easily modified in the web interface.
–If you add support for any new distro, please share it with the community! Send your pull requests on GiHub.
-Unites popular pentesting tools under one roof
–OWTF does “Scumbag spidering”, instead of implementing yet another spider (a hard job), OWTF will scrub the output of all tools/plugins run to gather as many URLs as possible.
–Scan by various aggression levels: OWTF supports scans which are based on the aggressiveness of the plugins/tools invoked.
–Extensible OWTF manages tools through ‘plugins’, making it trivial to add new tools.
–Implements pragmatic, RESTful APIs to all core OWTF capabilties
-Easy to Use
–Web UI. Now configure and monitor OWTF via a responsive and powerful interface accessible via your browser. The web interface is based on Twitter Bootstrap, making it easy to customize.
–Simple. OWTF provides default configuration for pentesting distros like Kali linux, and Samurai WTF. However it is very easy to configure on other distros as well.
–Powerful. OWTF uses multiprocessing to balance the scan load on CPU cores and generates a highly interactive report on the fly
Download: Paste the command given below in the terminal. This should download the quick-installation script and run it.
wget https://raw.githubusercontent.com/owtf/bootstrap-script/master/bootstrap.sh; chmod +x bootstrap.sh; ./bootstrap.sh
Or syncthing here
sources : https://www.owasp.org/index.php/OWASP_OWTF