Explore a comprehensive web application security assessment tool in this DerbyCon conference talk. Dive into the Rawr (Rapid Assessment of Web Resources) tool, learning about its features, capabilities, and practical applications. Discover how Rawr addresses common challenges in web security assessments, including information gathering, reporting, and attack surface identification. Follow along with a live demo, understand the tool's outputs and error logging, and gain insights into internal scanning and resource marking. Enhance your web security assessment skills and learn how to leverage Rawr for efficient and effective vulnerability detection.
Overview
Syllabus
Introduction
Scenario
Turnaround Time
The Problem
Information
Reporting
Crawl
Outputs
Error Log
Demo
Challenge
Relative Shoutouts
Visuals
Internal
Scan
Printable
Marking Resources
Youw Fuzz
Valid HTTP Requests
Attack Surface
