Project Information:template Best Practices: Use of Web Application Firewalls
|Project Name||OWASP Wapiti Project|
Web application vulnerability scanner / security auditor
|Short Project Description||
Wapiti allows to audit the security of web applications in an easy way. It performs a "black-box" scans acting like a fuzzer, injecting payloads to see if an application is vulnerable. It has two principal parts, a crawler that explores the pages of the application and the attack module that injects the payloads and evaluates their responses. Wapiti is easy to use and it can detect the most common vulnerabilities (XSS, SQL Injection, File Handler Errors...). It provides to the user a complete report (html format) with the found vulnerabilities.
|Key Project Information||Project Leader
Alberto Pastor Nieto
David del Pozo González
GNU Lesser General Public License
if any, add link
|Release Status||Main Links||Related Projects|
|Provisory Apha Quality
Please see here for complete information.
|ICT Romulus Project|