Web Vulnerability Assessment Tool
This project is maintained by tempto
WVAT is an open-source CLI tool to analyse a domain, its subdomains and respective pages, extracting the used technologies to find their vulnerabilities in order to cross-reference them with known exploits.
To contribute, please refer to Contributing.
$ npm install -g wvat
$ wvat COMMAND
running command...
$ wvat (-v|--version|version)
wvat/1.4.0 linux-x64 node-v10.16.3
$ wvat --help [COMMAND]
USAGE
$ wvat COMMAND
...wvat about [COMMAND]
wvat analyse DOMAIN
wvat crawl DOMAIN
wvat cves TECHNOLOGY
wvat error-codes
wvat exploits CVE
wvat help [COMMAND]
wvat inspect URL
wvat update-cve-cache
wvat whois DOMAIN
wvat about [COMMAND]Describes WVAT and its functionalities
USAGE
$ wvat about [COMMAND]
ARGUMENTS
COMMAND name of the command to obtain its description, args, flags and examples
EXAMPLES
about
about whoisSee code: src/commands/about.js
wvat analyse DOMAINGenerate full domain report
USAGE
$ wvat analyse DOMAIN
ARGUMENTS
DOMAIN domain to search subdomains
OPTIONS
-c, --config=config
Wvat config json file path
Imports a json file with the following fields:
"allow_data_reporting"[default: false] - Allows us to collect information on error
"webtech_command"[default: null] - How to call webtech
"amass_path"[default: "bin/amass"] - path to amass executable
-d, --depth=depth
[default: 2] Maximum page crawling depth
-g, --graph
Generate a graph of subdomains
-j, --noCveCache
Search without using local CVE cache
-k, --crawlingTimeout=crawlingTimeout
Subdomains crawling timeout
-n, --noCrawlingCache
Perform page crawling without using cache
-t, --timeout=timeout
Maximum application execution time (in seconds)
-u, --updateCveCache
Force update the local CVE cache
-v, --verbose
Verbose Mode (outputs all messages to screen)
-w, --whitelist=whitelist
Text file with subdomains to analyze
EXAMPLES
analyse https://www.google.com
analyse https://www.youtube.com -d 2 --verbose
analyse https://www.github.com -t 10 --noCveCache --noCrawlingCacheSee code: src/commands/analyse.js
wvat crawl DOMAINSearches for all subdomains for a given domain
USAGE
$ wvat crawl DOMAIN
ARGUMENTS
DOMAIN domain to search subdomains
OPTIONS
-c, --config=config
Wvat config json file path
Imports a json file with the following fields:
"allow_data_reporting"[default: false] - Allows us to collect information on error
"webtech_command"[default: null] - How to call webtech
"amass_path"[default: "bin/amass"] - path to amass executable
-d, --depth=depth
[default: 2] Maximum page crawling depth
-g, --graph
Generate a graph of subdomains
-k, --crawlingTimeout=crawlingTimeout
Subdomains crawling timeout
-n, --noCrawlingCache
Perform page crawling without using cache
-t, --timeout=timeout
Maximum application execution time (in seconds)
-v, --verbose
Verbose Mode (outputs all messages to screen)
-w, --whitelist=whitelist
Text file with subdomains to analyzeSee code: src/commands/crawl.js
wvat cves TECHNOLOGYSearches CVEs for a given technology
USAGE
$ wvat cves TECHNOLOGY
ARGUMENTS
TECHNOLOGY technology to search CVEs
OPTIONS
-c, --config=config
Wvat config json file path
Imports a json file with the following fields:
"allow_data_reporting"[default: false] - Allows us to collect information on error
"webtech_command"[default: null] - How to call webtech
"amass_path"[default: "bin/amass"] - path to amass executable
-d, --depth=depth
[default: 2] Maximum page crawling depth
-g, --graph
Generate a graph of subdomains
-j, --noCveCache
Search without using local CVE cache
-k, --crawlingTimeout=crawlingTimeout
Subdomains crawling timeout
-n, --noCrawlingCache
Perform page crawling without using cache
-t, --timeout=timeout
Maximum application execution time (in seconds)
-u, --updateCveCache
Force update the local CVE cache
-v, --verbose
Verbose Mode (outputs all messages to screen)
-w, --whitelist=whitelist
Text file with subdomains to analyze
EXAMPLES
cves "React Native" --noCveCache
cves "Windows Server" --updateCveCacheSee code: src/commands/cves.js
wvat error-codesDisplays the meaning of the possible error codes generated by the tool
USAGE
$ wvat error-codesSee code: src/commands/error-codes.js
wvat exploits CVESearches known exploits for a given CVE
USAGE
$ wvat exploits CVE
ARGUMENTS
CVE CVE to search know exploitsSee code: src/commands/exploits.js
wvat help [COMMAND]display help for wvat
USAGE
$ wvat help [COMMAND]
ARGUMENTS
COMMAND command to show help for
OPTIONS
--all see all commands in CLISee code: @oclif/plugin-help
wvat inspect URLAnalyses a given webpage and displays its technologies
USAGE
$ wvat inspect URL
ARGUMENTS
URL Webpage URL
OPTIONS
-c, --config=config Wvat config json file path
Imports a json file with the following fields:
"allow_data_reporting"[default: false] - Allows us to collect information on error
"webtech_command"[default: null] - How to call webtech
"amass_path"[default: "bin/amass"] - path to amass executable
-t, --timeout=timeout Maximum application execution time (in seconds)
-v, --verbose Verbose Mode (outputs all messages to screen)See code: src/commands/inspect.js
wvat update-cve-cacheUpdates local CVE cache file
USAGE
$ wvat update-cve-cacheSee code: src/commands/update-cve-cache.js
wvat whois DOMAINSearches for network information for a given domain
USAGE
$ wvat whois DOMAIN
ARGUMENTS
DOMAIN domain to obtain network information
OPTIONS
-c, --config=config Wvat config json file path
Imports a json file with the following fields:
"allow_data_reporting"[default: false] - Allows us to collect information on error
"webtech_command"[default: null] - How to call webtech
"amass_path"[default: "bin/amass"] - path to amass executable
-t, --timeout=timeout Maximum application execution time (in seconds)
-v, --verbose Verbose Mode (outputs all messages to screen)
EXAMPLES
whois google.com
whois youtube.com --verboseSee code: src/commands/whois.js