Example Usage
(1) Active Scan
./wscan --log-level=debug ws --basic-crawler --url http://testphp.vulnweb.com/ --json-output=wscan_scan_result.json --html-output=wscan_scan_result.html
./wscan --log-level=debug ws --basic-crawler --url-file=/wscan/url_file.txt --html-output=wscan_scan_result.html
./wscan --log-level=debug ws --browser --url http://testphp.vulnweb.com/ --html-output=wscan_scan_result.html
./wscan --log-level=debug ws --browser --url-file=/wscan/url_file.txt --html-output=wscan_scan_result.html
./wscan --log-level=debug ws --url http://testphp.vulnweb.com/listproducts.php?cat=1 --json-output=wscan_scan_result.json
./wscan --log-level=debug ws --url-file=/wscan/url_file.txt --html-output=wscan_scan_result.html
./wscan --log-level=debug ws --poc=/your_wscan_poc/wscan-poc/pocs/* --url http://testphp.vulnweb.com/ --html-output=wscan_scan_result.html
(2) Passive Scan
./wscan --log-level=debug ws --listen=127.0.0.1:1000 --json-output=wscan_scan_result.json
(3)POC Scan
3.1 POC download address https://github.com/chushuai/wscan-poc/releases
3.2 When Wscan is first run, a file named config.yaml will be generated. You need to modify the following content in this file t
See also
ntlm_theft
Open Source
Creates malicious files (LNK, SCF, PDF, DOCX, etc.) that force a Windows system to authenticate to a…
public-skills-builder
Free
Generate Claude Code bug bounty skills from public HackerOne reports and GitHub writeups — 18 vuln c…
Unicorn
Open Source
Simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Works…
Pentest-Swarm-AI
Open Source
Autonomous penetration testing using a swarm of AI agents. Orchestrates recon, classification, explo…
Corsy
Open Source
Lightweight program to find all known misconfigurations in CORS (Cross-Origin Resource Sharing) impl…
Nishang
Open Source
Kali
Framework and collection of PowerShell scripts and payloads for offensive security and post-exploita…