WebCruiser User Guide - Web Vulnerability Scanner 1. Software Introduction...2 2. User Guide...3 2.1. Scanner...3 2.2. SQL Injection...5 2.3. Cookie Injection Demo...6 2.4. Cross Site Scripting...10 2.5. Report...12 3. Order/Registration...13 4. FAQ...13 http://sec4app.com
1. Software Introduction WebCruiser - Web Vulnerability Scanner A compact but powerful web security scanning tool! It has a Crawler and Vulnerability Scanner (SQL Injection, Cross Site Scripting). It can support not only scanning website, but also POC (Proof of concept) for web vulnerabilities: SQL Injection and Cross Site Scripting etc. Function: * Crawler(Site Directories And Files); * Vulnerability Scanner(SQL Injection, Cross Site Scripting); * POC(Proof of Concept): SQL Injection and Cross Site Scripting; * GET/Post/Cookie Injection; * SQL Server: PlainText/FieldEcho(Union)/Blind Injection; * MySQL/Oracle/DB2/Access: FieldEcho(Union)/Blind Injection; * Administration Entrance Search; * Password Hash of SQL Server/MySQL/Oracle Administrator; * Time Delay For Search Injection; * Auto Get Cookie From Web Browser For Authentication; * Multi-Thread; * Adcanced:Proxy,Escape Filter; * Report Output. Disclaimer: * Authorization Must Be Obtained From The Web Application Owner; * This Program Will Try To Access Each Links And Submit(Get/Post) Data To Web Application When Scanning. E-mail: zhyale#gmail.com http://sec4app.com
2. User Guide 2.1. Scanner * Scanning is not necessary, if you know a link with vulnerability, you can skip this chapter. Steps: 1. Open Web Site and logged in at first. 2. Switch to " Scanner " and Click "Scan". 3. Scan Result(Above is Site Structure, and the following table is vulnerabilities):
4. Right click each vulnerabilities, then you can select SQL Injection or Cross Site Scripting operation:
2.2. SQL Injection Steps: 1. Input URL( and then input enter if you have not executed scanning), OR Right Click a Vulnerability in Scanner, select SQL Injection POC; 2. Swith to "Environment", Click Get Environment Information. 3. If you need more information, switch to DB :
2.3. Cookie Injection Demo * Similar to POST 1. Copy link to URL, Click "Go" to navigate it :
2. Login Simulation using username=admin : 3. View Cookie:
4. Switch Injection Type to "Cookie" and copy cookie field to CookieData : 5. Try to get environment information:
6. Switch to Database for more : Get Column, and Get Data. 7.Click "Save" button to save the result.
8. Advanced: Input the following at CookieData box: username=111' union all select 1,current server,chr(97) from sysibm.sysdummy1-- Note: 111 is a username that not exist. Click "Go": 2.4. Cross Site Scripting There are two types of XSS: * Cross Site Scripting(URL); * Cross Site Scripting(Form); Steps: 1. Input URL( and then input enter if you have not executed scanning), OR Right Click a Vulnerability in Scanner, select Cross Site Scripting(Form) or Cross Site Scripting(URL) :
2. Replace XSS code and Click "Manual XSS Test". 3. Usually your input will occurred in the Response Code or in the refer page:
2.5. Report You can get the scan report by the report tool:
Here is part style of report: 3. Order/Registration WebCruiser - Web Vulnerability Scanner is a shareware. If you like it, you can order it from RegNow: Professional Editon: $49.00 https://www.regnow.com/softsell/nph-softsell.cgi?item=25854-1 Enterprise Edition: $890.00 https://www.regnow.com/softsell/nph-softsell.cgi?item=25854-2 RegNow will send you the Registration Code. Thank you for choosing WebCruiser. 4. FAQ Q: Why I can not run WebCruiser on my computer? A: It need Windows with.net Framework 2.0 or above, if you have not installed.net Framework, please download it from microsoft web site. Usually, Windows XP and earlier has not.net Framework installed, but Windows Vista and Windows 7 has.net Framework
Integrated already. Q: What is the difference between the Free, Professional and Enterprise Edition? A: They are different in License type. Free Edition is for security amateurs, no support or update service; Professional Edition is for security professionals, masters of individual websites etc., non-commercial purpose, 12-month update and support service; Enterprise Edition is for enterprises, institution, or commercial organizations, 12-month update and support service with top priority. Support WebSite: http://sec4app.com/ Support E-mail: zhyale@gmail.com