ScannerVersionVendor
Oedipus1.8.1Jordan Del Grande

Tested Against WAVSEP Version:
1.0

Product Details:
Accurate
Version		License /
Technology		Last Update
Source Code
Activity
1.8.1 (Beta) GPL2
Ruby 1.8.x		08-04-2006

General Features:
GUIConfigUsageStabilityPerformanceReportScanLogPauseSession
SimpleComplexStableFast

Authentication, Control and Connection Features:
Custom
Cookie
Custom
Header
B
A
S
I
C
D
I
G
E
S
T
N
T
L
M
N
T
L
M
v
2
K
E
R
B
E
R
O
S
F
O
R
M
PROXY
GZIP
DEFLATE
SSL
CERT
Logout
Detection
Exclude
Logout
Exclude
URL
Exclude
Param

Coverage Features:
C
O
U
N
T
Manual
Crawl
URL
File
Html
Crawler
Ajax
Crawler
Flash
Crawler
Applet
Crawler
Silverlight
Crawler
WSDL
Crawler
REST
Crawler
Field
Autofill
Smart
Autofill
Anti
CSRF
Support
Viewstate
Support
CAPTCHA
Bypass
WAF
Bypass
2

Input Vector Support:
C
O
U
N
T
G
E
T
P
O
S
T
C
O
O
K
I
E
H
E
A
D
E
R
S
E
C
R
E
T
P
N
a
m
e
X
M
L
X
m
l
A
T
T
X
m
l
T
A
G
J
S
O
N
.
N
e
t
E
N
C
A
M
F
J
a
v
a
S
E
R
.
N
e
t
S
E
R
W
C
F
W
C
F
-
B
i
n
W
e
b
S
o
c
k
D
W
R
C
u
s
t
o
m
2

Audit Features:
C
O
U
N
T
S
Q
L
i
B
S
Q
L
i
S
S
J
S
i
R
X
S
S
P
X
S
S
D
X
S
S
J
S
O
N
h
L
F
I
R
F
I
C
M
D
E
x
e
c
U
P
L
O
A
D
R
E
D
I
R
E
C
T
C
R
L
F
i
L
D
A
P
i
X
P
A
P
H
i
M
X
i
S
S
I
F
O
R
M
A
T
i
C
O
D
E
i
X
M
L
i
E
L
i
B
U
F
F
E
R
o
I
N
T
E
G
E
R
o
C
O
D
E
D
i
s
c
B
A
C
K
U
P
f
P
A
D
D
I
N
G
A
U
T
H
b
P
R
I
V
e
X
X
E
S
E
S
S
I
O
N
F
I
X
A
T
I
O
N
C
S
R
F
A
D
o
S
6

Complimentary Audit Features:
WebServer
Hardening		CGI
Scanning		Dir & File
Enumeration		Passive
Analysis		Additional
Features
manual crawling is supported due to the burp log parsing feature and URL file parsing feature (including POST support).

The SQL Injection Detection Accuracy of the Scanner:
Detection AccuracyChart
58.82% Detection Rate
40.00% False Positives		(80/136)
(4/10)

The Reflected XSS Detection Accuracy of the Scanner:
Detection AccuracyChart
24.24% Detection Rate
42.86% False Positives		(16/66)
(3/7)

Additional Audit Features:
Simple fuzzing (error detection).

Additional Features:
manual crawling is supported due to the burp log parsing feature and URL file parsing feature (including POST support).

Overview:
A wide variety of features, relatively easy execution (once you figured out how to do it), a high detection rate and a low false positive rate make this tool a must have in any hacking arsenal. The tool uses blind & union SQL injection exploits to verify vulnerabilities, a very advanced feature for a scanner that old, not to mention the fact that this tool was the only one that found the obvious internal SQL injection (!) in the dot net banking application. The tool has some faults (such as the inability to handle non standard ports in windows, due to the character ?:? which has a unique significance when writing files), but those limitations can eventually be bypassed (replacing the string in the log, using port forwarding, etc).


Copyright © 2012 by Shay Chen (sectooladdict). All rights reserved.
Click here to learn how this information may be published or reused.