Authenticated Scan assistance

richard.peters's Avatar

richard.peters

29 Dec, 2019 02:45 AM

Hello, i'd like to see if I could get some assistance with a difficult to authenticate website. Essentially there are three elements (username, password, and a 2FA). I've tried every auth method and can't seem to find the appropriate method to get a good authenticated scan. While running burp i see some additional elements that seem to be passed as well (including some CSRF tokens). I have a feeling that i might not be able to do authenticated scans with arachni but wanted an expert look to see what i might be missing. thanks for all you do!

  1. 1 Posted by richard.peters on 29 Dec, 2019 03:21 AM

    richard.peters's Avatar

    If you'd like to assist, please let me know how to make this discussion private and i can share the public URL...thanks!

Reply to this discussion

Internal reply

Formatting help / Preview (switch to plain text) No formatting (switch to Markdown)

Attaching KB article:

»

Attached Files

You can attach files up to 10MB

If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac