Tag: sql injection
-
wapiti – web application vulnerability scanner (super quick review/intro)
Today, I finally looked at Wapiti, which is a web application vulnerability scanner. It operates on a black box basis (i.e. it doesn’t see the underlying PHP/ASP/Java source code), and effectively tries to ‘break’ any forms on a page. In order to get it to do anything useful, you’ll probably need to provide it with…