JoomScan – OWASP Joomla Vulnerability Scanner Project

[itsMe]

To see this hidden content, you must like this content.

Introduction

JoomScan, OWASP Vulnerability Scanner, is an open source project developed in perl which detects Joomla CMS vulnerabilities and analyses them. This tool enables seamless and effortless scanning of Joomla installations, and has a modular and lightweight architecture, so it doesn’t leave to much footprints.

JoomScan:

If you want to perform penetration testing on a Joomla CMS, then you should try out OWASP JoomScan, since it’s faster then ever with regular updates on Joomla vulnerabilities.

Beside ability to detect known offensive vulnerabilities, JoomScan can also detect many misconfigurations and admin-level shortcomings which can lead to the system compromise. Furthermore, OWASP JoomScan provides a friendly UI and compiles the final reports in both text and HTML formats.
 

Features:

•     Version enumerator
  
•     Vulnerability enumerator (based on version)
  
•     Components enumerator (1209 most popular by default)
  
•     Components vulnerability enumerator (based on version)(+1030 exploit)
  
•     Firewall detector
  
•     Reporting to Text & HTML output
  
•     Finding common log files
  
•     Finding common backup files