I believe the answer is in the authentication part of docs [0], most
likely in [1].
Regarding 2FA, the way I would do it is to authenticate using a
browser, then get the cookie and set it in w3af as explained in [1]
[0] http://docs.w3af.org/en/latest/authentication.html
[1]
Nice point highlighted by Blaharski. I am curious what if the SSO have 2FA.
Regards,
Vimal.
On Sep 1, 2016 11:11 PM, "Blaharski, Jared"
wrote:
> To Whom It May Concern:
>
>
>
> The website that we would like to scan has a SSO system and a HTTP
> redirect. Will
Hi, Jared!
You can try! ;)
В Чт, 01/09/2016 в 14:54 +, Blaharski, Jared пишет:
> To Whom It May Concern:
>
> The website that we would like to scan has a SSO system and a HTTP
> redirect. Will your software have any trouble with handling that when
> doing the crawl through the website?
>