This tutorial is to show you how to use the tool joomscan to find security vulnerabilities in Joomla! sites.
=================================================================
1 - What is joomscan?
Joomscan is a perl script that detects file inclusion, sql injection, command execution, and other vulnerabilities of a target website that uses the Joomla! content management system.
2 - How do I use it?
Joomscan is actually very easy to use.
Let’s say that we have a Joomla site called joomlabasedsite.com and we want to check its vulnerabilities with joomscan.
All we need to do is open up joomscan in Linux/Windows (or navigate to the folder via command line) and type this on the command line:
That’s all there is to it!
It will then list all of the different things that the Joomla! based site is vulnerable to hacking/security breaches.
*Some other command variations that are useful:
Using joomscan through a proxy:
Using joomscan to only check what version they are running:
Using joomscan BUT then putting the output into a text file. Useful for reviewing the vulnerabilities:
Using joomscan BUT then putting the output to an HTML file. I use this when I show a client their vulnerabilities:
Using joomscan and also show the percentage that has been completed:
Hope you enjoyed this tutorial!
As always, be safe, be smart, and remain ethical.
Download Links for Windows:
1 - ActivePerl Community Edition
2 - JoomScan
3 - You'll need a file called switch.pm ( need to copy it to 64bit OS C:\Perl64\site\lib - 32Bit OS C:\Perl\site\lib )
4 - I suggest once you get it running you type " joomscan.pl update " So you get the latest version.
Linux Users : Joomscan
If you need help ask KYBRD / I'll help you where I can...
Otherwise run a copy of BT comes standard.
=================================================================
1 - What is joomscan?
Joomscan is a perl script that detects file inclusion, sql injection, command execution, and other vulnerabilities of a target website that uses the Joomla! content management system.
2 - How do I use it?
Joomscan is actually very easy to use.
Let’s say that we have a Joomla site called joomlabasedsite.com and we want to check its vulnerabilities with joomscan.
All we need to do is open up joomscan in Linux/Windows (or navigate to the folder via command line) and type this on the command line:
Quote:
Linux: root@bt:/pentest/web/joomscan# ./joomscan.pl -u joomlabasedsite.com
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com
That’s all there is to it!
It will then list all of the different things that the Joomla! based site is vulnerable to hacking/security breaches.
*Some other command variations that are useful:
Using joomscan through a proxy:
Quote:
root@bt:/pentest/web/joomscan# ./joomscan -u joomlabasedsite.com -x PROXY IP:PORT
Windows: C:\Joomscan\joomscan.pl joomlabasedsite.com -x PROXY IP:PORT
Windows: C:\Joomscan\joomscan.pl joomlabasedsite.com -x PROXY IP:PORT
Using joomscan to only check what version they are running:
Quote:
root@bt:/pentest/web/joomscan# ./joomscan -u joomlabasedsite.com -pe
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -pe
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -pe
Using joomscan BUT then putting the output into a text file. Useful for reviewing the vulnerabilities:
Quote:
root@bt:/pentest/web/joomscan# ./joomscan -u joomlabasedsite.com -ot nameoffile.txt
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -ot nameoffile.txt
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -ot nameoffile.txt
Using joomscan BUT then putting the output to an HTML file. I use this when I show a client their vulnerabilities:
Quote:
root@bt:/pentest/web/joomscan# ./joomscan -u joomlabasedsite.com -oh nameoffile.htm
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -oh nameoffile.htm
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -oh nameoffile.htm
Using joomscan and also show the percentage that has been completed:
Quote:
root@bt:/pentest/web/joomscan# ./joomscan -u joomlabasedsite.com -sp
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -sp
Windows: C:\Joomscan\joomscan.pl -u joomlabasedsite.com -sp
Hope you enjoyed this tutorial!
As always, be safe, be smart, and remain ethical.
Download Links for Windows:
1 - ActivePerl Community Edition
2 - JoomScan
3 - You'll need a file called switch.pm ( need to copy it to 64bit OS C:\Perl64\site\lib - 32Bit OS C:\Perl\site\lib )
4 - I suggest once you get it running you type " joomscan.pl update " So you get the latest version.
Linux Users : Joomscan
If you need help ask KYBRD / I'll help you where I can...
Otherwise run a copy of BT comes standard.
Attachments: |
Switch.7z [8.21 KiB] Downloaded 413 times |
COMMENTS