Skip to content

v1.7-stable
Compare
Choose a tag to compare
@stasinopoulos stasinopoulos released this 03 Feb 06:09
· 1440 commits to master since this release
v1.7-20170203
341c039
  • Fixed: Minor improvement regarding unverified SSL context(s).
  • Added: New values ("URIPATH", "SRVPORT") have been added to "Set" option.
  • Revised: Minor improvements regarding "reverse_tcp" and "bind_tcp" shell options.
  • Fixed: Minor improvement for checking missing mandatory option(s).
  • Fixed: Minor improvement regarding the file path of the null device.
  • Fixed: Minor improvement regarding automated scan level increasing.
  • Fixed: Improvement regarding skipping the testing of problematic URL(s) and proceeding with next ones (in case of scanning multiple targets).
  • Fixed: Improvement regarding printing current assessment state in case of user abortion.
  • Revised: Minor improvement for proceeding with semiblind technique (i.e. "file-based"), once the user provides the path of web server's root directory.
  • Fixed: Minor fix regarding the lack of http/s to the user-defined URL(s).
  • Added: New option --skip-empty for skipping the testing of the parameter(s) with empty value(s).
  • Fixed: Improvement regarding testing the parameter(s) with empty value(s).
  • Added: New CGI shellscript path /cgi-bin/cgiCmdNotify (vulnerable to shellshock) has been added.

Note: For more check the detailed changeset.

Assets 2
Loading