WAppEx is an integrated platform for performing "penetration testing" and exploiting network applications in Windows ή Linux. It has the ability to automatically check for all types of security vulnerabilities in its "target", and then enables to perform malicious code for further exploitation.
WAppEx can be run on Linux and Windows.
The WAppEx's database, which includes <...>
hundreds of "exploits" provide an automated, comprehensive and reliable solution for detecting and exploiting vulnerabilities from security professionals around the world. His almost daily updates contain all the new high-risk vulnerabilities even 0day, which is not repaired by the companies.
The payloads used by the WAppEx tests have features like connect-back, listener shell, arbitrary code execution, arbitrary file upload, and so on.
Its flexible mechanism enables experienced users to write their own "scripts" and "payloads" to test how vulnerable their applications are.
WAppEx can exploit the following vulnerability categories:
SQL Injection, Remote File Inclusion, Local File Inclusion, OS Commanding, Script injection, and Local File Disclosure.