CIP Cyber

Log In
Menu
Log In
  • Opinion
  • Product Reviews
  • Industrial Cybersecurity
  • Videos

OWASP Joomla Vulnerability Scanner- Backtrack 5

Table of Contents

Website reflects the image of an organizations, there are millions of websites available on the Internte. Content management system (CMS) is one of the best platform for websites specially for blogging purposes. WordPress and Joomla are two famous CMS so the security is very important for both CMS. For wordpress as discussed about Wpscan and for joomla we have OWASP Joomla web vulnerability scanner.

Joomla vulnerability scanner is also available on Backtrack 5, so before going to the tutorial here is the quick introduction of joomla and joomla vulnerability scanner.

What Is Joomla ?

Joomla is a widely used CMS that provides effective features and it is easy to deploy, it can be used for multiple purposes like for E-commerce, Shopping and for forum. Joomla has basic four extension.
  • Component
  • Modules
  • Plugins
  • Theme
A large community are using Joomla for their websites use this google dork to find out.
inurl:index.php?option=com_
Joomla has its own team to secure this CMS, this team called JSST (Joomla security strike team), the team is responsible to find out and fix the vulnerabilities.

Joomla Vulnerability Scanner

A signature-based scanner that can detect file inclusion, sql injection, command execution, XSS, DOS, directory traversal vulnerabilities of a target Joomla! web site using known vulnerability database.

Download

If you are using Backtrack 5 than you dont need to download it you can get it from Applications–>Backtrack–>Vulnerability Assessment–>Web Application assessment–>CMS vulnerabilities identification–>Joomscan

Joomla Vulnerability Scanner Tutorial

The usage is very simple even you can use it own Windows, Linux and MAC platform because it requires only perl script to run this program.
./joomscan.pl -u victim.com -x localhost:8080

If you have any question regarding anything than please do ask via comment box.

Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
CIP Cyber Staff

CIP Cyber Staff

CIP Cyber Staff comprises CIP cybersecurity experts committed to delivering comprehensive information on critical infrastructure protection. The content covers diverse topics, equipping professionals to defend organizations and communities in an ever-evolving cyber landscape.

Most popular

Opinion

Password Cyberattack: Everything You Need to Know

November 7, 2023

Industrial Cybersecurity

Cybersecurity Awareness Month: Spotlight on ICS/OT Security

September 28, 2023

Opinion

How to Protect IoT Devices in Critical Infrastructure Networks

September 15, 2023

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training

Related Articles

What Proxies Are For

When you cannot access certain sites or hide your identity, you need a tool for that. For example, the USA proxies are in demand among

March 24, 2022

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training