I came across w3af and have it installed (for the most part). With the help of docker I'm able to run the console, but I keep getting this when I run the gui:

user1@UbuntuDocker:/opt/w3af/extras/docker/scripts$ sudo ./w3af_gui_docker
[sudo] password for user1:
root@172.17.0.2's password:
w3af's requirements are not met, one or more third-party libraries need to be installed.

On Ubuntu 12.04 systems please install the following operating system packages before running the pip installer:
    sudo apt-get -y install python-webkit

A script with these commands has been created for you at /tmp/w3af_dependency_install.sh

(process:18): Gtk-WARNING **: Locale not supported by C library.
        Using the fallback 'C' locale.
/usr/lib/python2.7/dist-packages/gtk-2.0/gtk/__init__.py:57: GtkWarning: could not open display
  warnings.warn(str(e), _gtk.Warning)
user1@UbuntuDocker:/opt/w3af/extras/docker/scripts$



$ sudo apt-get -y install python-webkit
Reading package lists... Done
Building dependency tree
Reading state information... Done
python-webkit is already the newest version (1.1.8-3.1).


Not sure where to go from here. Any suggestions?

I've run some scans from the console using the target/set target and plugins enable all on several URLs trying to prepare for an audit. I really have yet to find anything. Maybe our apps are more secure than I think and there really is nothing to find. The scans are also very quick, whereas Tenable takes a long time to run scans. Is that normal?

Not sure how to know whether it's really working.

Anyway, really appreciate what the app is doing. I'm not a security expert, just an IT guy, so any help is appreciated.

Thanks!




_______________________________________________
W3af-users mailing list
W3af-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-users

Reply via email to