[download attached] installation and simple use of Chinese version of awvs

One 、AWS brief introduction

Acunetix Web Vulnerability Scanner( abbreviation AWVS) It's a automation Of Web Vulnerability scanning tool , It can scan anything through Web Browser access and follow HITP/HTTPS Regular Web Site . AWVS The principle is based on Vulnerability matching method , adopt Web crawler Test your website security , Detect popular safety AWVS What vulnerabilities can be detected , What advantages does it have ？ AWVS Can pass SQL Injection attack 、XSS（ Cross-site scripting attacks ）、 Directory traversal 、 Code execution and other vulnerabilities to audit web Application security and output scan report . Compared with the complexity and time-consuming of manual testing , It can quickly find vulnerabilities to improve efficiency and vulnerability coverage . AWVS It's easy to operate , It is very suitable for beginners to learn and master .

Two 、 install AWVS

kali install awvs

One 、 Directly put down the good awvs Drag files in kali And right-click to extract and decompress

Two 、 to AWVS Assign permissions to and crack programs

stay home Right click the directory to open the terminal input ：sudo sukali Terminal run command ： chmod 777 filename（ file name ） explain ： Application chmod The command can modify the permissions of the file . kali The roles and permissions of each user are carefully and strictly divided , Users who operate on files or directories , Yes 3 Different types ： File owner 、 Group users 、 Other users .777 Corresponding to three types of users ,7 Means to read 4 Can write 2 Enforceability That's ok 1 The sum of the permission values of chmod 755 acunetix_trial.sh: give awvs File permissions chmod 777 patch_awvs: Give the active file permission View permissions ： Green means have permission

3、 ... and 、 Enter the directory where the file is located

Input ./acunetix_trial.sh Run the installation directly （/ Represents the current directory ) View permissions check ip visit https://192.168.239.132:13443/, When accessing 192.168.239.132 Access error , add https:// Click advanced to continue Click after entering Administrator There's a Profile Check the license

Four 、 Activate configuration

One 、 Activate file patch_awvs Copied to the /home/ acunetix/.acunetix _trial/v_190325161/ scanner/ Give orders command :cp patch_awvs /home/acunetix/.acunetix_trial/v_190325161/scanner/ explain ：cp Copy files for Entry directory ：cd /home/acunetix/.acunetix_trial/v_190325161/scanner/ Look up the catalogue ：

Two 、 Directly run the activation file under the copied directory command ：./patch_awvs Refresh ： Settings update ： It is recommended not to update save Next

3、 ... and 、AWVS Page introduction

AWVS There are six main function modules on the left side of the ： 1、Dashboard: Dashboard module , Some vulnerability information of the website you have scanned will be displayed here 2、Targets: Target module , Is the target website you want to scan 3、Vulnerabilities: Vulnerability module , Displays the vulnerability details scanned 4、Scans: Scanning module , from Target Select the target site for scanning 5、Reports: Report module , Report after vulnerability scanning 6、Settings: Set up modules , Just some settings of the software , Include software updates , Proxy settings, etc

Four 、AWVS Case scan for

Turn on AWVS 1、 open kali, Turn on AWVS service Opening service ： service acunetix_trial start View service status ： Status as active( running) Open for indication 2、 Open with a browser Awvs The client of https://127.0.0.1:13443 (13443 by linux Next awvs Default port for ,3443 yes windows Next awvs Default port for ) 3、 Enter the email account and password during installation to log in Scanning test 1、 add to Target: Fill in the domain name of the target or IP（http://59.63.200.79:8804/）

2、 Set scan options Scanning speed Scan Speed（ The slower, the more careful ）、 Whether the site needs to log in Site Login、 For different Web Site scanning plug-in AcuSensor（ Can help collect more information ） 3、 Set scan type and scan time

4、 Save settings , Click on Create Scan Start scanning Find the scan function module , You can see the basic information scanned , Such as Web Server version , operating system , Script language, etc Find the missing module , You can see the result of the scan , The vulnerabilities found may have false positives , Therefore, further verification is needed .

5、 ... and 、 analysis AWVS Scan report

The vulnerability scanning report can facilitate the penetration tester to report to the superior , Show the scan results . At the same time, it is also convenient to sort out the scanning information , Validation vulnerabilities

6、 ... and 、AWVS common problem

One 、windows Installation is supported under AWVS Do you ？

Support , You can refer to the following tutorial , Relatively simple https://www.cnblogs.com/chun-xiaolin001/p/10060830.html

Two 、AWVS What if you forget your password , Do I need to reinstall ？

Unwanted , Can enter the kali Of home/acunetix/.acunetix_trial Under the table of contents , function change_credentials.sh, You can reset the password directly

3、 ... and 、 Whether Chinese translation is supported ？

Tolerable , At the bottom of the article, there is a Chinese installation package to receive and download

Learn not to take detours , Scan bottom , Get the network security tutorial and route exclusive gift package ！