Subscribe For Free Updates!

We'll not spam mate! We promise.

Sunday, 1 September 2013

How to use Joomscan to find the Joomla Vulnerability in Backtrack 5 Linux

Joomscan is one of penetratoion testing  tool that help to find the vulnerability in joomla CMS.   The updated
version can detects 550 Vulnerabilities. Let me show how to use this joomscan in Backtrack5.

Download the Joomscan from here

Step 1: Moving to PenTest folder
Copy/Move the downloaded files  in directory
 /pentest/web/scanners/joomscan/


Step2: Set Permission
Now you have to set permission for the Joomscan file. In order to this, Type the following command in Terminal(if you don't know how to open terminal at all, please stop reading this and start it from basics of Linux).
CHMOD 0777 joomscan.pl 


Step 3: Update
Update the scanner to latest version. To do this, enter the following command in Terminal:
./joomscan.pl update


Step 4: Scanning for Vulnerability
Now everything ok, we have to scan our joomla site for vulnerability. To do this, enter the following command in Terminal: 
./joomscan.pl -u www.YourJoomlasite.com




Wait for a while, and it will list of the vulnerability found.

This tutorial is completely for Educational purpose only. This tutorial is for PenTester and Ethical Hackers .

LIKE OUR FACEBOOK PAGE AND JOIN OUR SATE TO GET LATEsT HACKS UPDATES

Socialize This Post
SOCIALIZE IT →
FOLLOW →
SHARE IT →

5 comments:

  1. Hello i was going through your website.It is very useful for a newbie like me to get access to such information.I have some questions , hope you answer it.

    1. Most of the tutorials i saw on internet are possible only when the victim is in the same network as you are.What if the victim is present on some other network sittingm miles away from you?

    2. Suppose i get the ip address of a victim present on other network.Then how can i gain access to his computer?I think i have to follow these steps:
    a. scan for vulnerabilities.Will nessus work if the victim ios on other network.If not what can i do?
    b. after finding the vulnerability, exploit it.

    It would be very helpful if you answer these questions.

    ReplyDelete
  2. add me on facebook https://www.facebook.com/asad.ali.1800721 will help you

    ReplyDelete
  3. hey i don't have a active fb account.. .could you please post it here itself??

    ReplyDelete
  4. Are you looking for free YouTube Subscribers?
    Did you know you can get these ON AUTO-PILOT & TOTALLY FREE by registering on Like 4 Like?

    ReplyDelete
  5. I am a Single full time dad on disability getting no help from their moms. It a struggle every day. My boys are 15 and 9 been doing this by myself for 8 years now it’s completely drained all my savings everything . These guys are the present day ROBIN HOOD. Im back on my feet again and my kids can have a better life all thanks to the blank card i acquired from skylink technology. Now i can withdraw up too 3000 per day Contact them as well on Mail: skylinktechnes@yahoo.com   or   whatsspp/telegram: +1(213)785-1553

    ReplyDelete