How arachni updates its plugin and list of vulnerabilities

maqsood's Avatar

maqsood

04 Jun, 2017 06:51 AM

I am very impressed with your product. My question is that how Arachni will update its plugins and list of vulnerabilities inorder to check against the latest vulnerabilities. Does it has checks dynamically or it is hard coded defined.

  1. Support Staff 1 Posted by Tasos Laskos on 04 Jun, 2017 10:55 AM

    Tasos Laskos's Avatar

    Arachni doesn't test for known vulnerabilities on specific products, it performs blackbox testing, so checks or plugins aren't being added frequently enough to warrant an update mechanism for those.

    However, the project itself could use an update mechanism for bugfixes and release updates, but I haven't gotten around to implementing that yet.

    I'm afraid that you'll need to manually download new releases as they become available.

  2. Tasos Laskos closed this discussion on 04 Jun, 2017 10:55 AM.

  3. maqsoodmaq ali re-opened this discussion on 07 Jun, 2017 02:12 AM

  4. 2 Posted by maqsoodmaq ali on 07 Jun, 2017 02:12 AM

    maqsoodmaq ali's Avatar

    Dear Tasos Laskos,

    How can I add additional list of vulnerabilities in arachni, I mean whether
    it is plugin or any other area where I have to make changes or add
    additional modules.

    Regards,
    Maqsood Ibrahim

    Thanks

  5. Support Staff 3 Posted by Tasos Laskos on 07 Jun, 2017 09:14 AM

    Tasos Laskos's Avatar

    To add more vulnerability checks you need to add more check components, for examples you can see the existing ones and use them as a base.

  6. Tasos Laskos closed this discussion on 18 Jun, 2017 01:04 PM.

Comments are currently closed for this discussion. You can start a new one.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac