OWASP Joomla Vulnerability Scanner Usage

Revision as of 13:26, 18 June 2009 by D0ubl3 h3lix (talk | contribs)

Jump to: navigation, search
Usage:  joomscan.pl -u <string> -x proxy:port
        -u <string>      = joomla Url
        -x <string:int>  = proXy to tunnel
        -c <string>      = cookie (name=value;)
        -pv              = Poke the Version
        -pe              = Poking version only
                           (and Exit the scanner)
        -ot              = Output to Text file (target-joexploit.txt)
        -oh              = Output to Html file (target-joexploit.htm)
        -vu              = Verbose (output every Url scan)
        -sp              = Show completed Percentage
         joomscan.pl -pv -u victim.com -x localhost:8080          
Check:   joomscan.pl check
         This option will check if the scanner update is available or not.
Update:  joomscan.pl update
         This option will check and update the local database if newer
         version is available.
Defense: joomscan.pl defense
         This option will give you a defensive note.
About:   joomscan.pl story
         This option will give you a short story about joomscan.