VEGA – WEB APPLICATION ANALYSIS TOOLS

Overview

  • To crawl the website and analyze the page contents and form parameters
  • Proxy for intercepting
  • To scan the websites and find vulnerabilities
  • Can define scope like in burp suite and OWASP ZAP

How to use it

Lunch VEGA in Kali Linux 2

Start New Scan

01.png

Insert the target website

02.png

Select modules to scan

03.png

Add token cookies for authentication if available

04.png

Define the exclude listed parameters

05.png

Check the result and validate the risks

06.png

You can also check the request/response details in proxy tab

07.png

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s