W3AF v1.0-rc3 released
w3af, is a Web Application Attack and Audit Framework. The w3af core and it’s plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much
The development team is proud to announce a new w3af release! Some
of the features of the 1.0-rc3 version are:
- Enhanced GUI, including huge changes in the MITM proxy and the Fuzzy
Request Editor - Increased speed by rewriting parts of the thread management code
- Fixed tons of bugs
- Reduced memory usage
- Many plugins were rewritten using different techniques that use less
HTTP requests to identify the same vulnerabilities - Reduced false positives
Framework features
- urllib2 wrapper
- Output Management
- Web Service support
- HTTP headers fuzzing
- IPC
- Session saving
- Fuzzer
- HTML / WML parsing
- Support of Plugins
Update submitted by Andres Riancho (the developer of w3af)
Post scriptum
Compliance Mandates
|