Once you have Kali Linux up and running, you can start playing with the tools. Since this book is about web application hacking, all of the major tools on which we will be spending most of our time can be accessed from Applications
| Web Application Analysis
. The following screenshot shows the tools present in Web Application Analysis
:
In Kali Linux, the tools in Web Applications Analysis
are further divided into four categories, as listed here:
CMS & Framework Identification
Web Application Proxies
Web Crawlers and Directory Bruteforce
Web Vulnerability Scanners
Content Management Systems (CMS) are very popular on the internet and hundreds of websites have been deployed using one of them—WordPress. Plugins and themes are an integral part of WordPress websites. However, there have been a huge number of security issues associated with these add-ons. WordPress websites are usually administered by ordinary users who are unconcerned about security, and they rarely...