0

I am new in Kali Linux and recently one of my jobs is to use Kali Linux to scan a newly developed site and see if there are any security issue.

And after going through some courses I found that, in Kali Linux there are a lot of tools that you can use to do scanning, but it seems that there is no a single tool, at least for a beginner, to just "Scan a website and generate a report".

Can it be done?

schroeder
  • 129,372
  • 55
  • 299
  • 340
Ellery Leung
  • 103
  • 2
  • 2
    Kali is just a Linux distribution. It's the tools that perform the scanning (and then the reporting). Why is someone insisting that you use "Kali" to scan something? – schroeder Sep 03 '18 at 07:01
  • So, if you remove Kali from the question, you are left with "what tools can a beginner use to scan a website?" And that's a little too broad to answer. It depends on what you want to achieve and what your skills are. – schroeder Sep 03 '18 at 07:03
  • 2
    My suggestion is that you use all the tools in the standard collection in Kali. I'm not sure why you want a single tool to meet all of your needs. – schroeder Sep 03 '18 at 07:06
  • Thank you all. Maybe I misunderstood the role of Kali Linux and that's why I ask if I can use that to do scanning. But thank you all for your clarification. – Ellery Leung Sep 04 '18 at 07:07

1 Answers1

0

This is too broad question, but I'll mention some tools that I've found useful and easy to begin with:

  • Netsparker

    Good tool that helps with testing SQL Injection and Cross-site Scripting. Check this image for a report example.

  • Nessus

    Amazing tool due to its ease of use, installation and activation might be difficult, but it's a good tool to try. It can help you with scanning html5 and Ajax web applications, along with host scanning. Check this image for a report example.

  • W3af

    Another good tool for testing web applications, it also can helps with HTTP basic and digest authentication testing. Not sure if there's a good report generating.

You can check this article for many other tools.

Eibo
  • 2,495
  • 3
  • 20
  • 32
  • Understood. Thank you. Maybe I misunderstood the concept/role of Kali Linux and that's why i ask that question. But thank you very much. – Ellery Leung Sep 04 '18 at 07:08
  • You're welcome, please consider marking the question as answered if you've found what you're seeking. Thanks. – Eibo Sep 04 '18 at 07:53