There is not much to say... you should capture the HTTP traffic,
understand what w3af is sending, understand what the application
expects, and make them match.
On Fri, Dec 6, 2013 at 1:46 AM, prakash jayabalan wrote:
> Sorry Riancho. It was a typo. There is no space before and after the
> passwor
Sorry Riancho. It was a typo. There is no space before and after the
passwordInput. Please lemme know in case you need further info for
analysis. The correct POST body is given below:
j_username=Administrator&j_password=172.16.X.X%3BDragon@
1234&mxnego_auto_login=disabled&usernameInput=
Administra
On Thu, Dec 5, 2013 at 12:15 PM, prakash jayabalan
wrote:
> Hi All,
>
> I am new to W3AF. Can someone help me with the authenticated scans please? I
> am unable to scan past the authentication page.
>
> I selected the Generic Auth plugin and gave the following values for the
> POST request mention
