This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Category:OWASP Joomla Vulnerability Scanner Project"
Line 1: | Line 1: | ||
− | [[: | + | ==== Main ==== |
+ | ==Overview== | ||
+ | |||
+ | Joomla! is probably the most widely-used CMS out there due to its flexibility, user-friendlinesss, extensibility to name a few.So, watching its vulnerabilities and adding such vulnerabilities as KB to Joomla scanner takes ongoing activity.It will help web developers and web masters to help identify possible security weaknesses on their deployed Joomla! sites. No web security scanner is dedicated only one CMS. | ||
+ | |||
+ | ==License== | ||
+ | |||
+ | OWASP Joomla Vulnerability Scanner is released under the [http://www.fsf.org/licensing/licenses/gpl.html GNU GENERAL PUBLIC LICENSE Version 3]. For further information on OWASP licenses, please consult the [[OWASP Licenses]] page. | ||
+ | |||
+ | == Downloads == | ||
+ | |||
+ | [http://yehg.net/lab/pr0js/files.php/joomscan-latest.zip Click Primary Source ] to download the latest. | ||
+ | |||
+ | [http://sf.net/projects/joomscan Click Secondary Source ] to download the latest. | ||
+ | |||
+ | == Current Features == | ||
+ | |||
+ | The following features are currently available. | ||
+ | * Exact version Probing (the scanner can tell whether a target is running version 1.5.9) | ||
+ | * Searching known vulnerabilities of Joomla! and its components | ||
+ | * Reporting to Text & HTML output | ||
+ | * Immediate update capability via scanner or svn | ||
+ | |||
+ | == Advantage over a Generic Vulnerability Scanner == | ||
+ | |||
+ | * Faster because it won't fuzz all requests like a generic scanner | ||
+ | * Detect the application version when a generic scanner knows nothing | ||
+ | * Detect all possible published vulnerabilities when a generic scanner cannot | ||
+ | |||
+ | == Usage Instructions == | ||
+ | |||
+ | [http://www.owasp.org/index.php/OWASP_Joomla_Vulnerability_Scanner_Usage Click here] for documentation regarding the use of the OWASP Joomla Vulnerability Scanner. | ||
+ | |||
+ | == Road Map == | ||
+ | |||
+ | [http://www.owasp.org/index.php/Category:OWASP_Joomla_Vulnerability_Scanner_Project_-_Roadmap Click here] to view the road map for the latest development version of OWASP Joomla Vulnerability Scanner. Please feel free to add your own change requests or send me patches/diffs! | ||
+ | |||
+ | ==Feedback and Participation == | ||
+ | |||
+ | We hope you find OWASP Joomla Vulnerability Scanner useful. Please contribute back to the project by sending your comments, questions, and suggestions to joomscan[@]yehg.net. Thank you. | ||
+ | |||
+ | ==Donations== | ||
+ | |||
+ | The Open Web Application Security Project is purely an open-source community driven effort. As such, all projects and research efforts are contributed and maintained with an individual's ''spare time.'' If you have found this or any other project useful, please support OWASP with a [http://www.owasp.org/index.php/Contributions donation]. | ||
+ | |||
+ | ==Project Sponsors== | ||
+ | |||
+ | The OWASP Joomla Vulnerability Scanner project is sponsored by YGN Ethical Hacker Group, Myanmar [http://yehg.net http://yehg.net/assets/yehg_logo.gif]. | ||
+ | |||
+ | |||
+ | ==== Project Identification ==== | ||
+ | |||
{{:Key Project Information:OWASP Joomla Vulnerability Scanner Project}} | {{:Key Project Information:OWASP Joomla Vulnerability Scanner Project}} | ||
− | [[Category:OWASP Project]] | + | [[Category:OWASP Project|Joomla Vulnerability Scanner Project]] |
[[Category:OWASP Tool]] | [[Category:OWASP Tool]] | ||
[[Category:OWASP Alpha Quality Tool]] | [[Category:OWASP Alpha Quality Tool]] | ||
+ | |||
+ | ==== Work in Progress ==== | ||
+ | |||
+ | |||
+ | __NOTOC__ | ||
+ | <headertabs/> |
Revision as of 16:58, 8 July 2009
Main
Overview
Joomla! is probably the most widely-used CMS out there due to its flexibility, user-friendlinesss, extensibility to name a few.So, watching its vulnerabilities and adding such vulnerabilities as KB to Joomla scanner takes ongoing activity.It will help web developers and web masters to help identify possible security weaknesses on their deployed Joomla! sites. No web security scanner is dedicated only one CMS.
License
OWASP Joomla Vulnerability Scanner is released under the GNU GENERAL PUBLIC LICENSE Version 3. For further information on OWASP licenses, please consult the OWASP Licenses page.
Downloads
Click Primary Source to download the latest.
Click Secondary Source to download the latest.
Current Features
The following features are currently available.
- Exact version Probing (the scanner can tell whether a target is running version 1.5.9)
- Searching known vulnerabilities of Joomla! and its components
- Reporting to Text & HTML output
- Immediate update capability via scanner or svn
Advantage over a Generic Vulnerability Scanner
- Faster because it won't fuzz all requests like a generic scanner
- Detect the application version when a generic scanner knows nothing
- Detect all possible published vulnerabilities when a generic scanner cannot
Usage Instructions
Click here for documentation regarding the use of the OWASP Joomla Vulnerability Scanner.
Road Map
Click here to view the road map for the latest development version of OWASP Joomla Vulnerability Scanner. Please feel free to add your own change requests or send me patches/diffs!
Feedback and Participation
We hope you find OWASP Joomla Vulnerability Scanner useful. Please contribute back to the project by sending your comments, questions, and suggestions to joomscan[@]yehg.net. Thank you.
Donations
The Open Web Application Security Project is purely an open-source community driven effort. As such, all projects and research efforts are contributed and maintained with an individual's spare time. If you have found this or any other project useful, please support OWASP with a donation.
Project Sponsors
The OWASP Joomla Vulnerability Scanner project is sponsored by YGN Ethical Hacker Group, Myanmar .
Project Identification
PROJECT INFORMATION | |||||||
---|---|---|---|---|---|---|---|
Project Name | OWASP Joomla Vulnerability Scanner Project (OJVS) | ||||||
Short Project Description |
A regularly-updated signature-based scanner that can detect file inclusion, sql injection, command execution, XSS, DOS, directory traversal vulnerabilities of a target Joomla! web site. | ||||||
Key Project Information |
Project Leader |
Project Contibutors |
Mailing List |
Project Type |
Release Status | Main Links | Related Projects |
---|---|---|
Work in Progress
Subcategories
This category has only the following subcategory.
O
Pages in category "OWASP Joomla Vulnerability Scanner Project"
The following 5 pages are in this category, out of 5 total.