lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Tue, 29 Dec 2009 11:08:41 +0100
From: Nicolas Surribas <nicolas.surribas@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Wapiti 2.2.0 is available - Web application
	vulnerability scanner

A new version of Wapiti was released : version 2.2.0.

Wapiti is a security scanner looking for vulnerabilities in web
applications.
The Wapiti code is platform independant (written in Python) and released
under the terms of the GPL license.

 What's new in this version :
   Added a manpage.
   Internationalization : translations of Wapiti in spanish and french.
   Options -k and -i allow the scan to be saved and restored later.
   Added option -b to set the scope of the scan based on the root url given.
   Wrote a library to save handle cookies and save them in XML format.
   Modules are now loaded dynamically with a dependency system.
   Rewrote the -m option used to activate / deactivate attack modules.
   New module to search for backup files of scripts on the target webserver.
   New module to search for weakly configured .htaccess.
   New module to search dangerous files based on the Nikto database.
   Differ "raw" XSS from "urlencoded" XSS.
   Updated BeautifulSoup to version 3.0.8.
   Better encoding support for webpages (convert to Unicode)
   Added "resource consumption" as a vulnerability type.
   Fixed bug ID 2779441 "Python Version 2.5 required?"
   Fixed bug with special characters in HTML reports.
   Fixed a lot of bugs.

Project page :
http://sourceforge.net/projects/wapiti

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ