Every now and then I ask for a favor, and… well… now I’m asking for one! The next release will be on Monday, and I need you to test w3af to make sure it doesn’t have any critical bugs before I merge into develop into master.
I’ve been working hard on fixing a ton of bugs, improving performance, continuous integration and many other things.
All 1300+ unittests PASS in the continuous integration system, but there’s nothing like real-user testing. If you have a couple of minutes to help, please follow these steps to install a virtualenv with w3af inside:
cd ~ apt-get install -y python-pip # This step might change in your OS pip install virtualenv mkdir w3af-release cd w3af-release virtualenv --system-site-packages venv . venv/bin/activate git clone https://github.com/andresriancho/w3af.git cd w3af git checkout develop ./w3af_gui . /tmp/w3af_dependency_install.sh
If any of those steps failed, let us know and we’ll fix it.
Now the fun part: Scan a site! In the same console where the previous commands were run, and virtualenv is enabled, run:
./w3af_gui
Configure w3af and run a scan. Please report any tracebacks, false positives, false negatives, etc. All your bug reports will be much appreciated!
Thanks!
ShareMAR
About the Author:
Web Application Security Innovator, Researcher and Entrepreneur. Python Hacker.