这个是一个自动化WEB安全检测工具,看官方咋吹的吧:
Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.
Arachni is smart, it trains itself by learning from the HTTP responses it receives during the audit process and is able to perform meta-analysis using a number of factors in order to correctly assess the trustworthiness of results and intelligently identify false-positives.
本大菜B觉得LINUX没有比他更好的WEB扫描工具,如果他能更人性化点 =。= 这熊孩子
Unlike other scanners, it takes into account the dynamic nature of web applications, can detect changes caused while travelling
through the paths of a web application’s cyclomatic complexity and is able to adjust itself accordingly.
This way attack/input vectors that would otherwise be undetectable by non-humans are seamlessly handled by Arachni.
安装他
首先这些</