Hi Guys,
Good Day!!
I am trying to scan a website for malware using the clamav.py grep plugin.
I wanted to confirm if i am doing it right or not.
What is did is this:
$ w3af_console
w3af>> plugins
w3af/plugins>> grep clamav
w3af/plugins>> crawl web_spider
w3af/plugins>> output console
w3af/plugins>> back
w3af>> target
w3af/config:target>> set target mydomain.com
w3af/config:target>> back
w3af>> start
Then it prints the output something like:
Using ClamAV 0.98.1/19240/Tue Jul 29 18:39:04 2014 for scanning HTTP
response bodies.
Found 1 URLs and 1 different injections points.
The URL list is:
- http://mydomain.com/
The list of fuzzable requests is:
- Method: GET | http://mydomain.com/
Scan finished in 26 seconds.
Stopping the core...
I wanted to confirm that is it scanning the whole website? or it is only
scanning he home page??
Thanks
With Regards
Aman Thakur
------------------------------------------------------------------------------
Infragistics Professional
Build stunning WinForms apps today!
Reboot your WinForms applications with our WinForms controls.
Build a bridge from your legacy apps to the future.
http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________
W3af-users mailing list
W3af-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-users
