web application – grendel-scan

Grendel-Scan is an open-source web application security testing tool. It has automated testing module for detecting common web application vulnerabilities, and features geared at aiding manual penetration tests.

backtrack 5r1

location
/pentest/web/grendel-scan

scans findings are saved to this location and viewable as .html
/pentest/web/grendel-scan/scans

to run
root@bt:/pentest/web/grendel-scan# ./grendel.sh

General Settings tab
1. Base URL’s = url

Test Module Selection tab
2. select what you require

3. top bar next to File click on scan – Start Scan (Will warn you of No output just click Yes)

You can find reports in /pentest/web/grendel-scan/scans

 

 

Advertisements

One thought on “web application – grendel-scan

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s