Customize Codename SCNR
Configuration
Configuration options include:
- CLI utility arguments
- WebUI profiles
- Scripting via Ruby API and/or REST API
Modularity
Add custom:
- security checks
- plugins for abstract functionality
- reporters
- more...
...in order to extend the capabilities of Codename SCNR to suit specialized needs.
Scripting
Add custom scripts for:
- static configuration
- dynamic configuration (like generating coupon IDs during scan time)
- creating of your own custom scanners for highly specialized occasions
Articles
Script your DOM XSS exploitation workflow
Hello all, I wanted to share some Codename SCNR scripting kung-fu with you. This is something you can use post-scan,...
The Arachni Chronicles
A story of curiosity, experimentation, development, million euro deal, fraudsters, abandonment and revitalization. From the inception of the F/OSS Arachni...
Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications
Some very interesting technology was presented a few days ago in the following articles: Following the data: Taint-tracing in the...
The Arachni Chronicles
A story of curiosity, experimentation, development, million euro deal, fraudsters, abandonment and revitalization.
From the inception of the F/OSS Arachni WebAppSec scanner to the opening of Ecsypno’s doors with its flagship product Codename SCNR.
Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications
Some very interesting technology was presented a few days ago in the following articles: Following the data: Taint-tracing in the...