SourceForge has been redesigned. Learn more.

Wapiti (web-application vulnerability scanner) : testers wanted

  • devloop

    devloop - 2013-08-22

    The Wapiti project is looking for testers !

    What is Wapiti ?

    Wapiti is :

    • a web-application vulnerability scanner written in Python
    • a command-line utility
    • a free and open-source software (GNU GPL v2)
    • a software that has been downloaded aproximately 97000 times on sourceforge and is included in some specialized Linux distribution (Kali/Backtrack)

    You can get more informations on what Wapiti does and how it works on the website.

    Testers wanted

    I’ve been working hard to bring a new version, now I need some help to make sure there is no more bugs :)

    To use Wapiti, make sure you have :

    • Python 2.6 or 2.7.
    • a recent version of python-requests (v1.2.3 is a good one)
    • BeautifulSoup
    • some web-applications or websites you own, to try launching attacks on.

    Then download the tarball from the SVN here (do not download the current and old stable version !)

    The, translations and most of the documentation are not up-to-date.
    Extract the tarball, cd to the src directory and launch Wapiti from here.

    To get the command-line usage, you can simply launch it without arguments :


    Even if you don’t find any bugs, please report what you tested, the platorm you used (Windows / OSX / Linux / Cygwin) and the Python implementation (CPython / IronPython, PyPy etc)

    Reply here or send emails to : nicolas.surrivas [ at ] gmail (dot) com

    Than you for your help

    Last edit: devloop 2013-08-22
  • devloop

    devloop - 2013-11-10

    Topic is closed, the new version was released.


Log in to post a comment.