Use Metasploit's WMAP Module to Scan Web Applications for Common Vulnerabilities
Having an efficient workflow is an integral part of any craft, but it's especially important when it comes to probing apps for vulnerabilities. While Metasploit is considered the de facto standard when it comes to exploitation , it also contains modules for other activities, such as scanning . Case in point, WMAP, a web application scanner available for use from within the Metasploit framework. A web application scanner is a tool used to identify vulnerabilities that are present in web applications. WMAP makes it easy to retain a smooth workflow since it can be loaded and run while working inside Metasploit. This guide will feature DVWA (Damn Vulnerable Web Application) as the target and Kali Linux and Metasploit on the offensive. created:- SHASHIKA NIMSARA Step 1--- Set Up Metasploit Database *The first thing we need to do, if it's not done already, is set up the Metasploit database, since this particular module needs it in order to r