Thursday, June 24, 2010

WebCruiser - Simple and effective Web Vulnerability Scanner

When you need a simple and effective tool with a very minimal footprint for performing web vulnerability testing, WebCruiser comes in handy! It makes a very valuable tool for the on the go toolkit arsenal either on a USB Kit or on a custom DVD Vulnerability Kit.

More on the tool from the developers!

WebCruiser - Web Vulnerability Scanner, a compact but powerful web security scanning tool that will aid you in auditing your site! It has a Vulnerability Scanner and a series of security tools.

It can support scanning website as well as POC( Prooving of concept) for web vulnerabilities: SQL Injection, Cross Site Scripting, XPath Injection etc. So, WebCruiser is also an automatic SQL injection tool, a XPath injection tool, and a Cross Site Scripting tool!
Key Features:
  • Crawler(Site Directories And Files);
  • Vulnerability Scanner(SQL Injection, Cross Site Scripting, XPath Injection etc.);
  • POC(Proof of Concept): SQL Injection, Cross Site Scripting, XPath Injection etc.;
  • GET/Post/Cookie Injection;
  • SQL Server: PlainText/Union/Blind Injection;
  • MySQL: PlainText/Union/Blind Injection;
  • Oracle: PlainText/Union/Blind/CrossSite Injection;
  • DB2: Union/Blind Injection;
  • Access: Union/Blind Injection;
  • Post Data Resend;
  • Administration Entrance Search;
  • Time Delay For Search Injection;
  • Auto Get Cookie From Web Browser For Authentication;
  • Report Output.
System Requirement: .Net FrameWork 2.0 or higher.
If you can not run WebCruiser, please Download .NET FrameWork V2.0 From Microsoft:

Application Download:
User Guide:

SQL Injection Introduction(PDF):
XPath Injection Introduction(PDF):

No comments:

Post a Comment