最近发现http://carnal0wnage.blogspot.com/这个站点上有好多好东西,大家可以去看看。不过这篇文章只是简单介绍了一下,更详细的内容还是建议去metasploit上查阅。
What is WMAP
“WMAP is a general purpose web application scanning framework for Metasploit 3. The architecture is simple and its simplicity is what makes it powerful. It’s a different approach compared to other open source alternatives and commercial scanners, as WMAP is not build around any browser or spider for data capture and manipulation.”
Getting it all up & running
Readme is here:
http://www.metasploit.com/dev/trac/browser/framework3/trunk/documentation/wmap.txt
Step 1: Download, patch, and install ratproxy
阅读全文
