Netsparker Pro 3.5.3

Discussion in 'Инструменты' started by symboss91s, 13 Apr 2015.

  1. symboss91s

    symboss91s Member

    Joined:
    10 Jun 2011
    Messages:
    77
    Likes Received:
    26
    Reputations:
    5
    Удаленный сканер веб-уязвимостей, предназначенный для обнаружения ошибок в настройках веб-сервера, поиска XSS-уязвимостей и возможностей проведения SQL-инъекций. Netsparker может использоваться для первоначальной проверки на наличие уязвимостей веб-сайта, определенного каталога, а также конкретного веб-скрипта. Поддерживается работа с AJAX/javascript веб-сайтами. Кроме поиска уязвимостей, веб-сканер анализирует структуру веб-сайта на предмет раскрытия служебной информации, такой как резервные копии данных, отладочные веб-скрипты, скрытые каталоги...

    Системные требования: - Windows XP, Vista, Windows 7, Windows 8, Windows Server (Microsoft .NET Framework 3.5)

    [​IMG]

    Changelog - 3.5.3
    NEW FEATURES

    * DOM based cross-site scripting vulnerability scanning
    * Chrome based web browser engine for DOM parsing
    * URL rewrite rules configuration wizard (to scan parameters in URLs)
    * "Ignore Vulnerability from Scan" option to exclude vulnerabilities from reports


    NEW SECURITY TESTS

    * Nginx web server Out-of-date version check
    * Perl possible source code disclosure
    * Python possible source code disclosure
    * Ruby possible source code disclosure
    * Java possible source code disclosure
    * Nginx Web Server identification
    * Apache Web Server identification
    * Java stack trace disclosure


    IMPROVEMENTS

    * Improved the correctness and coverage of Remote Code Execution via Local File Inclusion vulnerabilities
    * Improved cross-site scripting vulnerability confirmation patterns
    * Added support for viewing JSON arrays in document roots in request/response viewers
    * Added support for Microsoft Office ACCDB database file detection
    * Improved DOM parser to exclude non-HTML files
    * Improved PHP Source Code Disclosure vulnerability detection
    * Improved Nginx Version Disclosure vulnerability template
    * Improved IIS 8 Default Page detection
    * Improved Email List knowledgebase report to include generic email addresses
    * Improved Configure Form Authentication wizard by replacing embedded record browser with a Chrome based browser
    * Improved the form authentication configuration wizard to handle cases where Basic/NTLM/Digest is used in conjunction with Form Authentication
    * Added a cross-site scripting attack pattern which constructs a valid XHTML in order to trigger the XSS
    * Added double encoded attack groups in order to reduce local file inclusion vulnerability confirmation requests
    * Added status bar label which displays current VDB version and VDB version update notifications
    * Added login activity indicator to Scan Summary Dashboard
    * Added a new knowledgebase out-of-scope reason for links which exceed maximum depth
    * Updated external references in cross-site scripting vulnerability templates
    * Improved DOM parser by providing current cookies and referer to DOM/JavaScript context
    * Added several new DOM events to simulate including keyboard events
    * Improved the parsing of "Anti-CSRF token field names" setting by trimming each individual token name pattern
    * Added support for simulating DOM events inside HTML frames/iframes
    * Consolidated XSS exploitation function name (netsparker()) throughout all the areas reported
    * Removed redundant semicolon followed by waitfor delay statements from time based SQLi attack patterns to bypass more blacklistings
    * Changed default user-agent string to mimic a Chrome based browser
    * Improved LFI extraction file list to extract files from target system according to detected OS
    * Removed outdated PCI 1.2 classifications

    Virustotal .exe
    Virustotal .dll

    Скачать
     
    uzeerpc and 2peec like this.
  2. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    4.0.1 есть ломаный уже. http://www.freebuf.com/tools/63352.html Насчет версии в архиве не знаю, я ломал сам , скачал триал с офф сайта ,получил временную лицензию и расколупал до полного. Так пчто проверьте версию ,лучше с офф сайта скачать ,а лекарство из архива
     
    _________________________
  3. mcobraweb

    mcobraweb Member

    Joined:
    15 Jul 2015
    Messages:
    47
    Likes Received:
    9
    Reputations:
    0
    Нашло уязвимость Cookie Not Marked as Secure что с ними дальше делать?
     
  4. ACat

    ACat Member

    Joined:
    10 Mar 2017
    Messages:
    163
    Likes Received:
    31
    Reputations:
    0
    А под unix есть что-то подобное?
     
  5. man474019

    man474019 Member

    Joined:
    31 Jul 2015
    Messages:
    176
    Likes Received:
    40
    Reputations:
    0
  6. Xsite

    Xsite New Member

    Joined:
    21 Jan 2010
    Messages:
    43
    Likes Received:
    4
    Reputations:
    0
    Уже вышла 4.9 ,старый кряк не пашет , мб кто из реверсеров починить ?:D
     
  7. man474019

    man474019 Member

    Joined:
    31 Jul 2015
    Messages:
    176
    Likes Received:
    40
    Reputations:
    0
  8. man474019

    man474019 Member

    Joined:
    31 Jul 2015
    Messages:
    176
    Likes Received:
    40
    Reputations:
    0
    grimnir likes this.
  9. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    _________________________
  10. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    _________________________
    Vhaka Vova, man474019 and Alexandr17 like this.
  11. Vhaka Vova

    Vhaka Vova New Member

    Joined:
    29 Nov 2017
    Messages:
    7
    Likes Received:
    2
    Reputations:
    0
    Having tested both Acunetix and Netsparker...Netsparker did a much better job.
     
  12. man474019

    man474019 Member

    Joined:
    31 Jul 2015
    Messages:
    176
    Likes Received:
    40
    Reputations:
    0
    Alexandr17 and grimnir like this.
  13. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    _________________________
    man474019 and Veil like this.
  14. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    _________________________
    PEPSICOLA likes this.
  15. Sensoft

    Sensoft Member

    Joined:
    14 Jun 2015
    Messages:
    345
    Likes Received:
    26
    Reputations:
    0
  16. Sensoft

    Sensoft Member

    Joined:
    14 Jun 2015
    Messages:
    345
    Likes Received:
    26
    Reputations:
    0
    Как будет выглядеть запрос на раскрутку таблиц BD ?
     

    Attached Files:

  17. man474019

    man474019 Member

    Joined:
    31 Jul 2015
    Messages:
    176
    Likes Received:
    40
    Reputations:
    0
  18. grimnir

    grimnir Reservists Of Antichat

    Joined:
    23 Apr 2012
    Messages:
    1,029
    Likes Received:
    606
    Reputations:
    183
    Netspark 5.0.0.20026
    https://www.sendspace.com/file/mmmjoe
    проверяйте на вирусы
     
    _________________________