or Create a profile
08 Feb, 2019 05:29 PM
I am trying to use automate Arachni to perform authenticated scans against an application. Once authenticated , the application provides a token that is appended to the base url for all subsequent pages (i.e. If token is abc123, authenticated pages could be found at http://host.com/;stok=abc123/something).
I have successfully gotten the login_script to login and have verified that by printing the http response to the post, but Arachni is only scanning the pages that are accessible when unauthenticated. Does Arachni support this behavior?
Formatting help /
(switch to plain text)
(switch to Markdown)
You can attach files up to 10MB
If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.
A conversation has been started with the Arachni staff to resolve this discussion.
This discussion is private.
Only you and Arachni support staff can see and reply to it.
This discussion is public. Everyone can see and reply to it.
You can use Command ⌘ instead of Control ^ on Mac
Powered by Tender™.