Logged in successfully and after scan showing zero issues
HI Tasos, i hope you are doing well you did extraordinary work and i'm really grateful for your work. i'm new to arachni can't get expected result. Could you please help me to solve.
arachni http://XXXXXXXXXX/ --plugin=autologin:url=http://XXXXXXXXX/login,parameters="login=XXXX&password=xxxxxxx",check="Logout" --scope-exclude-pattern=/logout/ --checks=xss_event,no_sql_injection_differential,os_cmd_injection_timing,no_sql_injection,code_injection_timing,code_injection_php_input_wrapper,xpath_injection,xss,rfi,os_cmd_injection,xss_script_context,path_traversal,xss_path,response_splitting,unvalidated_redirect_dom,ldap_injection,sql_injection,source_code_disclosure,csrf,sql_injection_differential,xss_dom,xss_tag,session_fixation,file_inclusion,sql_injection_timing,xxe,xss_dom_script_context,code_injection,backdoors,http_put,origin_spoof_access_restriction_bypass,htaccess_limit,ssn --http-response-max-size=1500000 --browser-cluster-job-timeout=50
version : arachni-2.0dev-1.0dev
while scanning:-
--WARN Selenium [DEPRECATION] Selenium support for PhantomJS is deprecated. Use headless Chrome/Firefox or HTMLUnit instead.
--Blind NoSQL Injection (differential analysis): Server returned status (500), aborting analysis for form variable 'password' with '.
Normally i'm expecting some issues once it logged
merci
Keyboard shortcuts
Generic
? | Show this help |
---|---|
ESC | Blurs the current field |
Comment Form
r | Focus the comment reply box |
---|---|
^ + ↩ | Submit the comment |
You can use Command ⌘
instead of Control ^
on Mac
chi closed this discussion on 11 May, 2021 10:48 AM.
chi re-opened this discussion on 11 May, 2021 10:50 AM