The Ethical Hacker Network - Mapping the Application

EH-Net > Ethical Hacking Discussions and Related Certifications > Web Applications (Moderator: don) > Mapping the Application

Pages: [1] Go Down

« previous next »

	Author	Topic: Mapping the Application (Read 2277 times)
0 Members and 1 Guest are viewing this topic.

Seen

Full Member

Offline

Posts: 134

Mapping the Application

« on: November 05, 2012, 04:06:24 PM »

I typically use Burp Spider and the BuiltWith Chrome Extension to map websites I'm testing. Does anyone use anything else? I'm always looking for new things to play around with.


	Logged

Sec+, eCPPT

MaXe

Hero Member

Offline

Posts: 669

I've just upgraded myself to a cyborg muahahaa!!1

Re: Mapping the Application

« Reply #1 on: November 05, 2012, 05:06:07 PM »

I use Burp (the spider) as well, but Burp has several features, i.e. Discover Content, and even the Intruder, can be used to launch the wordlists DirBuster has. The OWASP DirBuster is however, quite fast most of the time for discovering well known content.

Nikto, is another web scanner that's good at finding common vulnerabilities, misconfigurations and even some content. (DirBuster is a lot more efficient.)


	Logged

I'm an InterN0T'er

Dark_Knight

Sr. Member

Offline

Posts: 292

Re: Mapping the Application

« Reply #2 on: November 05, 2012, 09:01:12 PM »

@MaXe what settings do you typically use for Dirbuster? Are you also using the raft wordlist

Wordlist: http://code.google.com/p/raft/downloads/detail?name=raft-wordlists-20110803.7z


	Logged

CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com

Seen

Full Member

Offline

Posts: 134

Re: Mapping the Application

« Reply #3 on: November 06, 2012, 01:29:04 AM »

I've only used Dirbuster once, I'll have to play around with it some more.

How accurate is nikto? I've used it on 2 different servers and got a lot of false positives (PHP related issues on sites not running PHP!)


	Logged

Sec+, eCPPT

ambient

Newbie

Offline

Posts: 20

Re: Mapping the Application

« Reply #4 on: November 06, 2012, 11:11:39 AM »

For me, I am working with
1. BurpSuite for web application crawling and mapping.
2. DirBuster for directory or file name enumeration.
3. HTTrack for saving some web contents in order to extract interesting metadata.
4. nikto for checking web server configuration
5. w3af for quick web application scanning

These activities pave a way to the next step.


	Logged

We secure the nation.
GPEN,eCPPT,C|EH,CCNA
http://incognitolab.com/
https://www.facebook.com/secure.thailand

Dark_Knight

Sr. Member

Offline

Posts: 292

Re: Mapping the Application

« Reply #5 on: November 06, 2012, 01:13:41 PM »

Quote from: ambient on November 06, 2012, 11:11:39 AM

......have you had issues doing authenticated scans with w3af?


	Logged

CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com

ambient

Newbie

Offline

Posts: 20

Re: Mapping the Application

« Reply #6 on: November 07, 2012, 01:49:43 AM »

Quote

......have you had issues doing authenticated scans with w3af?

What does it mean? If you meant the problem, my w3af often crashed during the scan.


	Logged

We secure the nation.
GPEN,eCPPT,C|EH,CCNA
http://incognitolab.com/
https://www.facebook.com/secure.thailand

Pages: [1] Go Up

« previous next »

Jump to: