Assignment - 2

Que: 1
List the tools that are used to scan the vulnerability in web application,
Desktop application and Programs in any other high level language.
Ans:
For web Application Vulnerability:

Grabber
Vega
Zed attack proxy
Wapiti
W3af
WebScarab
Skipfish
Wfuzz
BurpSuite
SQLMap

For Desktop Application Vulnerability:

Microsoft Baseline Security Analyser

Microsoft Security Compliance Manager
Protector plus
Attack Surface Analyzer
Metadefender

For Program Level (High level language):

Codesake Dawn
FindBugs
FindSecBugs
Flawfinder
PMD
SonarQube

Que 2: Describe Wapiti web Vulnerability scanning Tool:

Ans: Wapiti is a web scanning tool which perform the scanning of
the particular web site. It perform black box scan. That mean it does
not study the whole source code but it will scan the websites web
pages and form where data injection is possible.
Wapiti based on command-line interface so it hard to use
for beginning but best tool for expert person. It support both POST
HTTP and GET method for attacks. By using this tool we can also
inject payload in form of file. It can also check the SSL Verification
(Active/Deactive). It try to extract URL from JS interpreter. It can
detect the parameter from URL and remove the parameter in URLs.
It has ability to generate the vulnerability report format in HTML,
XML, JSON, TXT, etc. It is a form of command line but at the time
of scanning it give you colour in terminal to highlight the
vulnerability so we feel like a GUI. If the website has SWF file then
also it can Extract URL from it.
Wapiti can detect vulnerabilities like:

File Disclosure.
Cross site Scripting injection
Database injection ,like: SQL injection and XPath injection
Command Execution detection.
XmleXternal Entity injection
Bypass .htaccess configuration
CRLF injection through HTTP Response splitting, session
hijacking

Some of the screenshot of that tool which gives the highlight how
to use it.