Arachni包装说明
Arachni是一个开源的,功能全面,模块化,高性能的Ruby框架,旨在对帮助渗透测试人员和管理人员评估web应用的安全性。 它是灵巧,它通过从它审计过程期间接收,并能够利用,以便正确地评估结果的可信性和智能识别误报许多因素进行荟萃分析的HTTP响应学习训练本身。 它是灵活,足以涵盖大量的使用案例,从一个简单的命令行扫描工具,以扫描仪的全球高性能网格,到Ruby库允许脚本审核,以一个多用户多扫描网络协作平台。 资料来源:http://arachni-scanner.com/
- 作者:TASOS“Zapotek”Laskos
许可:Apache的2.0
0x01 包含在arachni包工具
arachni_web - 该Arachni网络扫描仪
:~# arachni_web -h Usage: rackup [ruby options] [rack options] [rackup config] Ruby options: -e, --eval LINE evaluate a LINE of code -b BUILDER_LINE, evaluate a BUILDER_LINE of code as a builder script --builder -d, --debug set debugging flags (set $DEBUG to true) -w, --warn turn warnings on for your script -I, --include PATH specify $LOAD_PATH (may be used more than once) -r, --require LIBRARY require the library, before executing your script Rack options: -s, --server SERVER serve using SERVER (thin/puma/webrick/mongrel) -o, --host HOST listen on HOST (default: 0.0.0.0) -p, --port PORT use PORT (default: 9292) -O NAME[=VALUE], pass VALUE to the server as option NAME. If no VALUE, sets it to true. Run '/usr/share/arachni/bin/../system/gems/bin/rackup -s SERVER -h' to get a list of options for SERVER --option -E, --env ENVIRONMENT use ENVIRONMENT for defaults (default: development) -D, --daemonize run daemonized in the background -P, --pid FILE file to store PID (default: rack.pid) Common options: -h, -?, --help Show this message --version Show version0x02 arachni_web用法示例
:~# arachni_web >> Thin web server (v1.5.1 codename Straight Razor) >> Maximum connections set to 1024 >> Listening on 0.0.0.0:9292, CTRL+C to stop
原文来自:https://www.hackfun.org/kali-tools/arachni_zh.html。转载请注明原出处,商用请联系原作者授权。