Created Thursday 07 December 2017
# The "metasploit"-like package for web application vulnerability analysis and penetration testing.
$ cower -d websploit
$ cowup
# Some of the modules in Websploit might need the Metasploit package to run - Like the web/wmap
# Check out the metasploit page in Pentest
General Usage
# Fire it up
# You'll open the CLI interface which will have a preceding wsf >
$ websploit
# Upgrade it
wsf > upgrade
# Check out the modules
wsf > show modules
# At any time can you type help to get a list of commands
Example Usage
# Let's have a look of a couple of the tools included
# F.ex. let's scan a website (web modules)
wsf > use web/dir_scanner
# The terminal will change and have a preceding wsf:Dir_Scanner >
# Let's show what is required for the module to do its magic
wsf:Web_Scanner > show options
Options Value --------- -------------- TARGET http://google.com
# We can see that it just want a target as its options
# Let's set that TARGET
wsf:Web_Scanner > set TARGET www.example.com
# And run our devious action
wsf:Web_Scanner > run