0% found this document useful (0 votes)

247 views

Kali Linux - Website Penetration Testing - Tutorialspoint

Vega and ZapProxy are tools in Kali Linux that can be used to scan websites for vulnerabilities like SQL injection and cross-site scripting. Vega includes an automated scanner and intercepting proxy, while ZapProxy is an integrated penetration testing tool. Database tools like sqlmap and sqlninja can scan for SQL injection vulnerabilities and access databases. WPScan and Joomscan specifically scan WordPress and Joomla sites for vulnerabilities in those content management systems. TLSSLed and other tools evaluate the security of SSL/TLS implementations on HTTPS websites.

Uploaded by

Zaheer Ahmed

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

247 views

Kali Linux - Website Penetration Testing - Tutorialspoint

Uploaded by

Zaheer Ahmed

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 23

10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Kali Linux - Website Penetration Testing

In this chapter, we will learn about website penetration testing offered by Kali Linux.

Vega Usage

Vega is a free and open source scanner and testing platform to test the security of web
applications. Vega can help you find and validate SQL Injection, Cross-Site Scripting (XSS),
inadvertently disclosed sensitive information, and other vulnerabilities. It is written in Java, GUI
based, and runs on Linux, OS X, and Windows.
Vega includes an automated scanner for quick tests and an intercepting proxy for tactical
inspection. Vega can be extended using a powerful API in the language of the web: JavaScript. The
official webpage is https://subgraph.com/vega/

Step 1 − To open Vega go to Applications → 03-Web Application Analysis → Vega

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 1/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 2 − If you don’t see an application in the path, type the following command.

Step 3 − To start a scan, click “+” sign.

Step 4 − Enter the webpage URL that will be scanned. In this case, it is metasploitable machine →
click “ Next”.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 2/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 5 − Check all the boxes of the modules you want to be controlled. Then, click “Next”.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 3/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 6 − Click “Next” again in the following screenshot.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 4/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 7 − Click “Finish”.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 5/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 8 − If the following table pops up, click “Yes”.

The scan will continue as shown in the following screenshot.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 6/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 9 − After the scan is completed, on the left down panel you can see all the findings, that are
categorized according to the severity. If you click it, you will see all the details of the vulnerabilities
on the right panel such as “Request”, ”Discussion”, ”Impact”, and ”Remediation”.

ZapProxy

ZAP-OWASP Zed Attack Proxy is an easy-to-use integrated penetration testing tool for finding
vulnerabilities in web applications. It is a Java interface.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 7/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 1 − To open ZapProxy, go to Applications → 03-Web Application Analysis → owaspzap.

Step 2 − Click “Accept”.

ZAP will start to load.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 8/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 3 − Choose one of the Options from as shown in the following screenshot and click “Start”.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 9/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Following web is metasploitable with IP :192.168.1.101

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 10/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 4 − Enter URL of the testing web at “URL to attack” → click “Attack”.

After the scan is completed, on the top left panel you will see all the crawled sites.
In the left panel “Alerts”, you will see all the findings along with the description.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 11/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 5 − Click “Spider” and you will see all the links scanned.

Database Tools Usage

sqlmap

sqlmap is an open source penetration testing tool that automates the process of detecting and
exploiting SQL injection flaws and taking over of database servers. It comes with a powerful
detection engine, many niche features for the ultimate penetration tester and a broad range of
switches lasting from database fingerprinting, over data fetching from the database, to accessing
the underlying file system and executing commands on the operating system via out-of-band
connections.
Let’s learn how to use sqlmap.
Step 1 − To open sqlmap, go to Applications → 04-Database Assessment → sqlmap.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 12/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

The webpage having vulnerable parameters to SQL Injection is metasploitable.

Step 2 − To start the sql injection testing, type “sqlmap – u URL of victim”

Step 3 − From the results, you will see that some variable are vulnerable.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 13/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

sqlninja

sqlninja is a SQL Injection on Microsoft SQL Server to a full GUI access. sqlninja is a tool targeted
to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its
back-end. Full information regarding this tool can be found on http://sqlninja.sourceforge.net/
Step 1 − To open sqlninja go to Applications → 04-Database Assesment → sqlninja.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 14/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

CMS Scanning Tools

WPScan

WPScan is a black box WordPress vulnerability scanner that can be used to scan remote
WordPress installations to find security issues.
Step 1 − To open WPscan go to Applications → 03-Web Application Analysis → “wpscan”.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 15/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

The following screenshot pops up.

Step 2 − To scan a website for vulnerabilities, type “wpscan –u URL of webpage”.

If the scanner is not updated, it will ask you to update. I will recommend to do it.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 16/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Once the scan starts, you will see the findings. In the following screenshot, vulnerabilities are
indicated by a red arrow.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 17/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Joomscan

Joomla is probably the most widely-used CMS out there due to its flexibility. For this CMS, it is a
Joomla scanner. It will help web developers and web masters to help identify possible security
weaknesses on their deployed Joomla sites.
Step 1 − To open it, just click the left panel at the terminal, then “joomscan – parameter”.
Step 2 − To get help for the usage type “joomscan /?”

Step 3 − To start the scan, type “ joomscan –u URL of the victim”.

Results will be displayed as shown in the following screenshot.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 18/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

SSL Scanning Tools

TLSSLed is a Linux shell script used to evaluate the security of a target SSL/TLS (HTTPS) web
server implementation. It is based on sslscan, a thorough SSL/TLS scanner that is based on the
openssl library, and on the “openssl s_client” command line tool.
The current tests include checking if the target supports the SSLv2 protocol, the NULL cipher, weak
ciphers based on their key length (40 or 56 bits), the availability of strong ciphers (like AES), if the
digital certificate is MD5 signed, and the current SSL/TLS renegotiation capabilities.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 19/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

To start testing, open a terminal and type “tlssled URL port“. It will start to test the certificate to
find data.

You can see from the finding that the certificate is valid until 2018 as shown in green in the
following screenshot.

w3af

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 20/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

w3af is a Web Application Attack and Audit Framework which aims to identify and exploit all web
application vulnerabilities. This package provides a Graphical User Interface (GUI) for the
framework. If you want a command-line application only, install w3af-console.
The framework has been called the “metasploit for the web”, but it’s actually much more as it also
discovers the web application vulnerabilities using black-box scanning techniques. The w3af core
and its plugins are fully written in Python. The project has more than 130 plugins, which identify and
exploit SQL injection, cross-site scripting (XSS), remote file inclusion and more.
Step 1 − To open it, go to Applications → 03-Web Application Analysis → Click w3af.

Step 2 − On the “Target” enter the URL of victim which in this case will be metasploitable web
address.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 21/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

Step 3 − Select the profile → Click “Start”.

Step 4 − Go to “Results” and you can see the finding with the details.

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 22/23
10/02/2021 Kali Linux - Website Penetration Testing - Tutorialspoint

https://www.tutorialspoint.com/kali_linux/kali_linux_website_penetration_testing.htm 23/23

25 Best Kali Linux Tools
No ratings yet
25 Best Kali Linux Tools
19 pages
Kali Linux Wireless Penetration Testing - Master Wireless Testing Techniques To Survey and Attack Wireless Networks With Kali Linux (PDFDrive) PDF
100% (3)
Kali Linux Wireless Penetration Testing - Master Wireless Testing Techniques To Survey and Attack Wireless Networks With Kali Linux (PDFDrive) PDF
214 pages
How To Attack Windows 10 Machine With Metasploit On Kali Linux (Updated 2021) - Infosec Resources
No ratings yet
How To Attack Windows 10 Machine With Metasploit On Kali Linux (Updated 2021) - Infosec Resources
10 pages
Rats - Mobile - Methodology v1.0
No ratings yet
Rats - Mobile - Methodology v1.0
14 pages
Advanced Penetration Testing With Kali Linux
86% (7)
Advanced Penetration Testing With Kali Linux
24 pages
American Holocaust
100% (2)
American Holocaust
134 pages
Kali Linux - A Comprehensive Step by Step Beginner's Guide to Learn the Basics of Cybersecurity and Ethical Computer Hacking, Including Wireless Penetration Testing Tools to Secure Your Network by Jason Kno
100% (3)
Kali Linux - A Comprehensive Step by Step Beginner's Guide to Learn the Basics of Cybersecurity and Ethical Computer Hacking, Including Wireless Penetration Testing Tools to Secure Your Network by Jason Kno
104 pages
Abs Red Team Adversarial Attack Simulation Exercises Guidelines v1 5 PDF
No ratings yet
Abs Red Team Adversarial Attack Simulation Exercises Guidelines v1 5 PDF
47 pages
Python-Nmap - Nmap From Python
No ratings yet
Python-Nmap - Nmap From Python
7 pages
Ethical Hacking Course From KYAnonymous
No ratings yet
Ethical Hacking Course From KYAnonymous
135 pages
Introduction and History of PTCL
100% (2)
Introduction and History of PTCL
2 pages
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools
From Everand
Penetration Testing of Computer Networks Using BurpSuite and Various Penetration Testing Tools
Dr. Hidaia Mahmood Alassoulii
No ratings yet
Bug Hunting earn money
No ratings yet
Bug Hunting earn money
4 pages
Tutorial To Setup A Metasploitable and Kali Linux
No ratings yet
Tutorial To Setup A Metasploitable and Kali Linux
9 pages
Offensive Recon //for// Bug Bounty Hunters: By: Harsh Bothra
No ratings yet
Offensive Recon //for// Bug Bounty Hunters: By: Harsh Bothra
18 pages
Installation of Kali Linux
100% (3)
Installation of Kali Linux
45 pages
PenTest 2013-5
No ratings yet
PenTest 2013-5
68 pages
PenTest XSS
No ratings yet
PenTest XSS
53 pages
Advance Burp Suite Training
No ratings yet
Advance Burp Suite Training
33 pages
Pwntools
100% (1)
Pwntools
156 pages
Metasploit User Guide
100% (2)
Metasploit User Guide
99 pages
Android Bug Bounty Training For InfoSec Startups PDF
No ratings yet
Android Bug Bounty Training For InfoSec Startups PDF
8 pages
Android Penetration Testing
No ratings yet
Android Penetration Testing
32 pages
Kali Linux Wireless Penetration Testing Essentials - Sample Chapter
50% (4)
Kali Linux Wireless Penetration Testing Essentials - Sample Chapter
24 pages
Guide To Penetration Testing
100% (2)
Guide To Penetration Testing
18 pages
Cross Site Scripting
100% (1)
Cross Site Scripting
15 pages
Burp Suit Tips
67% (3)
Burp Suit Tips
105 pages
Burp Suite Cookbook Practical Recipes To
100% (1)
Burp Suite Cookbook Practical Recipes To
7 pages
DEF CON 25 - Workshop-Gabriel-Ryan-Advanced-Wireless-Attacks-Against-Enterprise-Networks PDF
No ratings yet
DEF CON 25 - Workshop-Gabriel-Ryan-Advanced-Wireless-Attacks-Against-Enterprise-Networks PDF
123 pages
Ethical Hacking PDF
No ratings yet
Ethical Hacking PDF
127 pages
1.host Discovery: Ping&Ping Sweep
No ratings yet
1.host Discovery: Ping&Ping Sweep
5 pages
Wireless Hacking - Introduction To Wireless Hacking With Kali Linux (2017) PDF
100% (1)
Wireless Hacking - Introduction To Wireless Hacking With Kali Linux (2017) PDF
123 pages
Java Deserialization Vulnerabilites The Forgotten Bug Class Redacted v1
100% (1)
Java Deserialization Vulnerabilites The Forgotten Bug Class Redacted v1
57 pages
Unveiling Instagram Hacking
No ratings yet
Unveiling Instagram Hacking
47 pages
BurpSuite Compendium Preview
100% (2)
BurpSuite Compendium Preview
13 pages
Advanced XSS
No ratings yet
Advanced XSS
8 pages
Recon For Web Pen-Testing
No ratings yet
Recon For Web Pen-Testing
17 pages
Testing Pentest
No ratings yet
Testing Pentest
53 pages
Web Penetration Testing With Kali Linux - Second Edition - Sample Chapter
100% (3)
Web Penetration Testing With Kali Linux - Second Edition - Sample Chapter
32 pages
Advanced Web Service Attacks and Exploitation (AWAE)
No ratings yet
Advanced Web Service Attacks and Exploitation (AWAE)
9 pages
Pentesting With Metasploit
100% (2)
Pentesting With Metasploit
43 pages
Hackthebox and Vulnhub
100% (1)
Hackthebox and Vulnhub
15 pages
Wireless Pentesting and Security PDF
100% (3)
Wireless Pentesting and Security PDF
193 pages
Ethical Hacking Tools Preview
No ratings yet
Ethical Hacking Tools Preview
39 pages
Burpsuite Essential Content 2
100% (1)
Burpsuite Essential Content 2
6 pages
File Upload Exploitation
No ratings yet
File Upload Exploitation
36 pages
Red Teaming
No ratings yet
Red Teaming
16 pages
Penetration Testing Tools
No ratings yet
Penetration Testing Tools
16 pages
Pentesting Report
100% (2)
Pentesting Report
3 pages
Sqli Manual
No ratings yet
Sqli Manual
86 pages
Metasploit: Metasploit Is An Exploitation Framework
No ratings yet
Metasploit: Metasploit Is An Exploitation Framework
4 pages
SMB Penetration Testing
No ratings yet
SMB Penetration Testing
15 pages
Malware Development - Trojan Horse
100% (1)
Malware Development - Trojan Horse
17 pages
CEH Brochure
No ratings yet
CEH Brochure
24 pages
DNSRecon
No ratings yet
DNSRecon
15 pages
Hacker Linux Uncovered @spy - by Michael Flenov PDF
100% (1)
Hacker Linux Uncovered @spy - by Michael Flenov PDF
936 pages
Bug Bounty Related
100% (1)
Bug Bounty Related
36 pages
Metasploit Unleashed
71% (7)
Metasploit Unleashed
657 pages
Metasploit Linux Installation Guide
No ratings yet
Metasploit Linux Installation Guide
6 pages
Kali Linux 2: Windows Penetration Testing
From Everand
Kali Linux 2: Windows Penetration Testing
Wolf Halton
5/5 (1)
Common Windows, Linux and Web Server Systems Hacking Techniques
From Everand
Common Windows, Linux and Web Server Systems Hacking Techniques
Dr. Hidaia Mahmood Alassouli
No ratings yet
Certified Ethical Hacker C.E.H v11 Exam Prep And Dumps
From Everand
Certified Ethical Hacker C.E.H v11 Exam Prep And Dumps
Byte Books
No ratings yet
Career Management-Career Cycles
0% (1)
Career Management-Career Cycles
8 pages
Managerial Accounting and The Business Environment: Presentation Topic
No ratings yet
Managerial Accounting and The Business Environment: Presentation Topic
9 pages
Proc Fonetik 2005
No ratings yet
Proc Fonetik 2005
148 pages
Research Plan Format 3
No ratings yet
Research Plan Format 3
8 pages
Launch CReader CR529 - Manual
No ratings yet
Launch CReader CR529 - Manual
52 pages
Introduction To Child Labour
No ratings yet
Introduction To Child Labour
12 pages
Candle Pattern Explanation
No ratings yet
Candle Pattern Explanation
87 pages
NEP Aligned Scheme 23 24 of B.Tech - in Electronics Computer Science Adm. Y. 23 24
No ratings yet
NEP Aligned Scheme 23 24 of B.Tech - in Electronics Computer Science Adm. Y. 23 24
20 pages
Poverty: The Double Burden of Malnutrition in Mothers and The Intergenerational Impact
No ratings yet
Poverty: The Double Burden of Malnutrition in Mothers and The Intergenerational Impact
13 pages
Faculty of Business Management, Villa College Module Name: Module Code
No ratings yet
Faculty of Business Management, Villa College Module Name: Module Code
9 pages
Optoacoplador Integrado 4N25
No ratings yet
Optoacoplador Integrado 4N25
7 pages
Cooja Intro
No ratings yet
Cooja Intro
4 pages
Flavor Added - The Sciences of Flavor and The Industrialization of
No ratings yet
Flavor Added - The Sciences of Flavor and The Industrialization of
558 pages
T-10 Hull Conditions Inspection Report Rev A PDF
100% (1)
T-10 Hull Conditions Inspection Report Rev A PDF
36 pages
TOEFL Speaking
No ratings yet
TOEFL Speaking
3 pages
DA3 Practice Worksheet 3 - Motion and Time
No ratings yet
DA3 Practice Worksheet 3 - Motion and Time
6 pages
Artur Schnabel outline
No ratings yet
Artur Schnabel outline
4 pages
(Ebook) Half Girlfriend by Chetan Bhagat ISBN 9788129135728, 8129135728download
100% (4)
(Ebook) Half Girlfriend by Chetan Bhagat ISBN 9788129135728, 8129135728download
52 pages
Cryptography TiK KAMIS
No ratings yet
Cryptography TiK KAMIS
156 pages
Kampala Junior Academy Schools Mathmatics Holiday Work For Primary Three Section A
No ratings yet
Kampala Junior Academy Schools Mathmatics Holiday Work For Primary Three Section A
4 pages
M12_getty_crosswalks
No ratings yet
M12_getty_crosswalks
12 pages
TL Resume
No ratings yet
TL Resume
2 pages
Ds LIFEBOOK U7312 APAC
No ratings yet
Ds LIFEBOOK U7312 APAC
4 pages
Art App L1
No ratings yet
Art App L1
2 pages
The Sermon at Benaras
No ratings yet
The Sermon at Benaras
2 pages
Lecture 7: Weak Duality: 7.1.1 Primal Problem
No ratings yet
Lecture 7: Weak Duality: 7.1.1 Primal Problem
10 pages
Robot Arm KINEMATICs and Dynamics
No ratings yet
Robot Arm KINEMATICs and Dynamics
27 pages
Ejercicios Temas
No ratings yet
Ejercicios Temas
15 pages