Joomscan is one of penetratoion testing tool that help to find the vulnerability in joomla CMS. The updated
version can detects 550 Vulnerabilities. Let me show how to use this joomscan in Backtrack5.
Download the Joomscan from here
Download the Joomscan from here
Step 1: Moving to PenTest folder
Copy/Move the downloaded files in directory
/pentest/web/scanners/joomscan/
Step2: Set Permission
Now you have to set permission for the Joomscan file. In order to this, Type the following command in Terminal(if you don't know how to open terminal at all, please stop reading this and start it from basics of Linux).
CHMOD 0777 joomscan.pl
Step 3: Update
Update the scanner to latest version. To do this, enter the following command in Terminal:
./joomscan.pl update
Step 4: Scanning for Vulnerability
Now everything ok, we have to scan our joomla site for vulnerability. To do this, enter the following command in Terminal:
./joomscan.pl -u www.YourJoomlasite.com
Wait for a while, and it will list of the vulnerability found.
This tutorial is completely for Educational purpose only. This tutorial is for PenTester and Ethical Hackers .
Hello i was going through your website.It is very useful for a newbie like me to get access to such information.I have some questions , hope you answer it.
ReplyDelete1. Most of the tutorials i saw on internet are possible only when the victim is in the same network as you are.What if the victim is present on some other network sittingm miles away from you?
2. Suppose i get the ip address of a victim present on other network.Then how can i gain access to his computer?I think i have to follow these steps:
a. scan for vulnerabilities.Will nessus work if the victim ios on other network.If not what can i do?
b. after finding the vulnerability, exploit it.
It would be very helpful if you answer these questions.
add me on facebook https://www.facebook.com/asad.ali.1800721 will help you
ReplyDeletehey i don't have a active fb account.. .could you please post it here itself??
ReplyDeleteAre you looking for free YouTube Subscribers?
ReplyDeleteDid you know you can get these ON AUTO-PILOT & TOTALLY FREE by registering on Like 4 Like?
I am a Single full time dad on disability getting no help from their moms. It a struggle every day. My boys are 15 and 9 been doing this by myself for 8 years now it’s completely drained all my savings everything . These guys are the present day ROBIN HOOD. Im back on my feet again and my kids can have a better life all thanks to the blank card i acquired from skylink technology. Now i can withdraw up too 3000 per day Contact them as well on Mail: skylinktechnes@yahoo.com or whatsspp/telegram: +1(213)785-1553
ReplyDelete