From ba4633a1a21af5b1409d9c9d868ba9d2fd340da8 Mon Sep 17 00:00:00 2001 From: Kr1ss Date: Sun, 19 Dec 2021 15:13:18 +0100 Subject: update: wapiti 3.0.9-1 upstream release --- ChangeLog | 26 +++++++++++++++++++++++++- 1 file changed, 25 insertions(+), 1 deletion(-) (limited to 'ChangeLog') diff --git a/ChangeLog b/ChangeLog index a33ccec..46734c7 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,28 @@ +15/02/2021 + Wapiti 3.0.9 + CLI: New "passive" module option allows to use less aggressives modules only + WP_ENUM: Improve detection of Wordpress + SSL: New module to check TLS/SSL configuration, powered by SSLyze + Log4Shell: New attack module to detect the infamous vulnerability + +18/11/2021 + Wapiti 3.0.8 + CLI: prevent users from using -a without specifying --ayth-type (and vice versa) + Crawler: Upgrade HTTP related dependencies (httpx, httpcore, httpx-socks) + +14/10/2021 + Wapiti 3.0.7 + Crawler: Extract URLs from AngularJS based websites + Crawler: Support HTTP responses compressed with Brotli + Crawler: Fix handling of upload forms (due to moving to httpx), handling of button fields having a value + CLI: Added option to log output to a file + Modules: Increased speed of modules Nikto, buster, drupal_enum, brute_login_form thank to concurrency + Modules: Added a module to detect subdomain takeovers + XSS: Removed references to wapiti3.ovh for XSS payloads + Modules: Fixed some false positives in modules backup, Nikto and SQL + Modules: Upgrade Wappalyzer module + Crawler: Upgrade HTTP related dependencies (httpx, httpcore) + 13/05/2021 Wapiti 3.0.5 SQL: boolean based blind SQL injection support added @@ -9,7 +34,6 @@ Fingerprinting: several issues fixed on mod_wapp Crawler: HTTP requests are processed concurrently for faster crawling. Check the new --tasks option. - 20/02/2021 Wapiti 3.0.4 XSS: improved context awareness of HTML webpage, payloads can now use the existing HTML tags without closing them -- cgit v1.2.3-70-g09d2