ADAPT – Tool That Performs Automated Penetration Testing For WebApps

ADAPT - Tool That Performs Automated Penetration Testing For WebApps

ADAPT is a instrument that performs Automated Dynamic Application Penetration Testing for net purposes. It is designed to extend accuracy, velocity, and confidence in penetration testing efforts. ADAPT mechanically checks for a number of trade normal OWASP Top 10 vulnerabilities, and outputs categorized findings based mostly on these potential vulnerabilities. ADAPT additionally makes use of the performance from OWASP ZAP to carry out automated energetic and passive scans, and auto-spidering. Due to the versatile nature of the ADAPT instrument, all of theses options and checks will be enabled or disabled from the configuration file. For extra info on checks and configuration, please go to the ADAPT wiki.

How it Works
ADAPT makes use of Python to create an automatic framework to make use of trade normal instruments, equivalent to OWASP ZAP and Nmap, to carry out repeatable, properly-designed procedures with anticipated outcomes to create an easly comprehensible report itemizing
vulnerabilities detected throughout the net utility.

Automated Tests:

* OTG-IDENT-004 – Account Enumeration
* OTG-AUTHN-001 - Testing for Credentials Transported over an Encrypted Channel
* OTG-AUTHN-002 – Default Credentials
* OTG-AUTHN-003 - Testing for Weak lock out mechanism
* OTG-AUTHZ-001 – Directory Traversal
* OTG-CONFIG-002 - Test Application Platform Configuration
* OTG-CONFIG-006 – Test HTTP Methods
* OTG-CRYPST-001 - Testing for Weak SSL/TLS Ciphers, Insufficient Transport Layer Protection
* OTG-CRYPST-002 - Testing for Padding Oracle
* OTG-ERR-001 - Testing for Error Code
* OTG-ERR-002 – Testing for Stack Traces
* OTG-INFO-002 – Fingerprinting the Webserver
* OTG-INPVAL-001 - Testing for Reflected Cross website scripting
* OTG-INPVAL-002 - Testing for Stored Cross website scripting
* OTG-INPVAL-003 – HTTP Verb Tampering
* OTG-SESS-001 - Testing for Session Management Schema
* OTG-SESS-002 – Cookie Attributes

Installing the Plugin

  1. Detailed install instructions.


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.