update: wapiti 3.0.9-1

upstream release

1 files changed, 25 insertions, 1 deletions

diff --git a/ChangeLog b/ChangeLog
index a33ccec..46734c7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,28 @@
+15/02/2021
+    Wapiti 3.0.9
+    CLI: New "passive" module option allows to use less aggressives modules only
+    WP_ENUM: Improve detection of Wordpress
+    SSL: New module to check TLS/SSL configuration, powered by SSLyze
+    Log4Shell: New attack module to detect the infamous vulnerability
+
+18/11/2021
+    Wapiti 3.0.8
+    CLI: prevent users from using -a without specifying --ayth-type (and vice versa)
+    Crawler: Upgrade HTTP related dependencies (httpx, httpcore, httpx-socks)
+
+14/10/2021
+    Wapiti 3.0.7
+    Crawler: Extract URLs from AngularJS based websites
+    Crawler: Support HTTP responses compressed with Brotli
+    Crawler: Fix handling of upload forms (due to moving to httpx), handling of button fields having a value
+    CLI: Added option to log output to a file
+    Modules: Increased speed of modules Nikto, buster, drupal_enum, brute_login_form thank to concurrency
+    Modules: Added a module to detect subdomain takeovers
+    XSS: Removed references to wapiti3.ovh for XSS payloads
+    Modules: Fixed some false positives in modules backup, Nikto and SQL
+    Modules: Upgrade Wappalyzer module
+    Crawler: Upgrade HTTP related dependencies (httpx, httpcore)
+
 13/05/2021
     Wapiti 3.0.5
     SQL: boolean based blind SQL injection support added
@@ -9,7 +34,6 @@
     Fingerprinting: several issues fixed on mod_wapp
     Crawler: HTTP requests are processed concurrently for faster crawling. Check the new --tasks option.
 
-
 20/02/2021
     Wapiti 3.0.4
     XSS: improved context awareness of HTML webpage, payloads can now use the existing HTML tags without closing them