Updates w3af v-1.6.45 : web application attack and audit framework, the open source web vulnerability scanner.

Updates w3af v-1.6.45 : web application attack and audit framework, the open source web vulnerability scanner.

change v-1.6.45 Huge improvements!
– HTTP response parsers are now run in a different process
– Added support for SSL’s SNI using OpenSSL
– Added support for scanning servers with specific SSL protocols disabled (poodle)
– Added new platforms to the dependency check
– Run w3af inside docker
– Updated sqlmap
– Performance improvements in core classes
– Improved profiling capabilities (internal use only)
– Improved exception handling to catch more descriptive tracebacks
– Added new plugins for web sockets and RFD
– Better error handling for HTTP requests
– Huge reducion of memory usage in phishtank plugin
– >100 bugs fixed

w3af, is a Web Application Attack and Audit Framework. The w3af core and it's plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much more.

w3af, is a Web Application Attack and Audit Framework. The w3af core and it’s plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much more.

w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities.

Download :
w3af-1.6.45.zip (23.5 MB)
w3af-1.6.45.tar.gz (22.1 MB)
Source : http://w3af.org/ | http://seclist.us/w3af-beta.html Our post long time a go 🙂