diff options
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 26 |
1 files changed, 25 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog index a33ccec6f96d..46734c7bd9fc 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,28 @@ +15/02/2021 + Wapiti 3.0.9 + CLI: New "passive" module option allows to use less aggressives modules only + WP_ENUM: Improve detection of Wordpress + SSL: New module to check TLS/SSL configuration, powered by SSLyze + Log4Shell: New attack module to detect the infamous vulnerability + +18/11/2021 + Wapiti 3.0.8 + CLI: prevent users from using -a without specifying --ayth-type (and vice versa) + Crawler: Upgrade HTTP related dependencies (httpx, httpcore, httpx-socks) + +14/10/2021 + Wapiti 3.0.7 + Crawler: Extract URLs from AngularJS based websites + Crawler: Support HTTP responses compressed with Brotli + Crawler: Fix handling of upload forms (due to moving to httpx), handling of button fields having a value + CLI: Added option to log output to a file + Modules: Increased speed of modules Nikto, buster, drupal_enum, brute_login_form thank to concurrency + Modules: Added a module to detect subdomain takeovers + XSS: Removed references to wapiti3.ovh for XSS payloads + Modules: Fixed some false positives in modules backup, Nikto and SQL + Modules: Upgrade Wappalyzer module + Crawler: Upgrade HTTP related dependencies (httpx, httpcore) + 13/05/2021 Wapiti 3.0.5 SQL: boolean based blind SQL injection support added @@ -9,7 +34,6 @@ Fingerprinting: several issues fixed on mod_wapp Crawler: HTTP requests are processed concurrently for faster crawling. Check the new --tasks option. - 20/02/2021 Wapiti 3.0.4 XSS: improved context awareness of HTML webpage, payloads can now use the existing HTML tags without closing them |