Install
git clone https://github.com/rezasp/joomscan.git
cd joomscan
perl joomscan.pl
Introduction
Vulnerability Scanner (JoomScan) is an open source project whose main purpose is to automate vulnerability detection to enhance the security of Joomla CMS development. Based on Perl development, this tool can easily and seamlessly scan various Joomla projects for vulnerabilities. Its lightweight and modular architecture ensures that there will be no traces left during the scanning process. Not only does it detect known vulnerabilities, but it also detects many misconfiguration vulnerabilities, administrative privilege vulnerabilities, and more. It is also possible to export scan reports in HTML or text format.
effect
- automation
- version enumeration
- Vulnerability enumeration (version based)
- component enumeration
- Component Vulnerability Enumeration
- Firewall Detection
- Export data in text or HTML format
- Find common log files
- Find common backup files
use
Simple scan
joomscan --url www.xxxx.com
Scan result description:
- [+] FireWall Detector ---- Firewall Detector
- [+] Detecting Joomla Version ---- Detecting Joomla version
- [+] Core Joomla Vulnerability ---- Core Joomla Vulnerability
- [+] Checking Directory Listing ---- Checking Directory Listing
- [+] Checking apache info/status files ---- Check apache info/status files
- [+] admin finder ---- background login interface
- [+] Checking robots.txt existing ---- Check if robots.txt file exists
- [+] Finding common backup files name ---- Find common backup files name
- [+] Finding common log files name ---- Find common log file names
- [+] Checking sensitive config.php.x file ---- Find sensitive config.php.x file
Detected: 版本
, 一些目录
and管理员登录界面
Enumerate installed components
joomscan --url www.xxxx.com --enumerate-components
set cookies
joomscan --url www.xxxx.com --cookie "test=demo;"
set user-agent
joomscan --url www.xxxx.com --user-agent "....."