Added joomscan

(cherry picked from commit 3a6b992ae3668252924b36e0c0ace06823031338)
2025-10-29 16:59:26 +00:00 · 2014-04-20 11:16:37 -04:00 · 2014-04-20 11:16:37 -04:00 · 7bf992ca81
commit 7bf992ca81
parent 2f0cdff44a
1 changed files with 74 additions and 0 deletions
--- a/tools/joomscan.md
+++ b/tools/joomscan.md
@ -0,0 +1,74 @@
+# joomscan
+
+Notes
+-------
+
+Help Text
+-------
+```
+
+ ..|''||   '|| '||'  '|'     |      .|'''.|  '||''|.  
+.|'    ||   '|. '|.  .'     |||     ||..  '   ||   || 
+||      ||   ||  ||  |     |  ||     ''|||.   ||...|' 
+'|.     ||    ||| |||     .''''|.  .     '||  ||      
+ ''|...|'      |   |     .|.  .||. |'....|'  .||.     
+    
+
+=================================================================
+ OWASP Joomla! Vulnerability Scanner v0.0.4  
+ (c) Aung Khant, aungkhant]at[yehg.net
+ YGN Ethical Hacker Group, Myanmar, http://yehg.net/lab
+ Update by: Web-Center, http://web-center.si (2011)
+=================================================================
+ 
+ Vulnerability Entries: 611
+ Last update: February 2, 2012
+
+ Usage:  ./joomscan.pl -u <string> -x proxy:port
+         -u <string>      = joomla Url
+
+         ==Optional==
+
+         -x <string:int>  = proXy to tunnel
+         -c <string>      = Cookie (name=value;)
+         -g "<string>"    = desired useraGent string(within ") 
+         -nv              = No Version fingerprinting check
+         -nf              = No Firewall detection check
+         -nvf/-nfv        = No version+firewall check
+         -pe 		  = Poke version only and Exit
+         -ot              = Output to Text file (target-joexploit.txt)
+         -oh              = Output to Html file (target-joexploit.htm)
+         -vu              = Verbose (output every Url scan)
+	 -sp		  = Show completed Percentage
+
+ ~Press ENTER key to continue 
+
+
+ Example:  ./joomscan.pl -u victim.com -x localhost:8080
+	  
+ Check:    ./joomscan.pl check
+           - Check if the scanner update is available or not.
+
+ Update:   ./joomscan.pl update
+           - Check and update the local database if newer version is available.
+
+ Download: ./joomscan.pl download
+           - Download the scanner latest version as a single zip file - joomscan-latest.zip.
+
+ Defense:  ./joomscan.pl defense
+           - Give a defensive note.
+
+ About:    ./joomscan.pl story
+           - A short story about joomscan.
+ 
+ Read:     ./joomscan.pl read DOCFILE
+           DOCFILE - changelog,release_note,readme,credits,faq,owasp_project
+
+```
+
+Example Usage
+-------
+
+Links
+-------
+