OpenVAS 9 - how to scan web application on the same website
Posted: Thu Jun 21, 2018 3:50 am
As the title says.
How can I do it in OpenVAS?
The other group has a website for example: https://thiswebsite.com/main.php
and in that website there is a web application for example: https://thiswebsite.com/application/register.asp
Both sites are hosted in the same server.
I don't know if scanning the IP address of the server will be enough to know the vulnerability also of the web application.
Upon trying we only get results containing php vulnerabilities.
also, is there a tool where we can see what OpenVAS is doing during the scan?
Something like, you can see what port the tool is scanning currently, how much load/traffic is being thrown on the target.
Thanks.
How can I do it in OpenVAS?
The other group has a website for example: https://thiswebsite.com/main.php
and in that website there is a web application for example: https://thiswebsite.com/application/register.asp
Both sites are hosted in the same server.
I don't know if scanning the IP address of the server will be enough to know the vulnerability also of the web application.
Upon trying we only get results containing php vulnerabilities.
also, is there a tool where we can see what OpenVAS is doing during the scan?
Something like, you can see what port the tool is scanning currently, how much load/traffic is being thrown on the target.
Thanks.