Scanning Websites For Vulns Using Uniscan

Uniscan is a free tool used to scan websites for vulnerabilities. It is very easy to use, but also very effective in scanning. I will show you how to use uniscan on backtrack, but it is also available on all computers running perl. 

THIS IS FOR EDUCATIONAL PURPOSES ONLY!!!
I AM NOT RESPONSIBLE FOR MISUSE! 

DIFFICULTY: 1

1. Copy the url of the website you want to scan
2. Open Backtrack
3. Navigate to "Applications-Backtrack-Vulnerability Assessment-Web Application Assessment-Web Vulnerability Scanners-Uniscan", Or open up a terminal and type: cd /pentest/web/uniscan
4. Type "./uniscan.pl" (You should see something like the image below)
   

   

   Uniscan

5. Now Type "./uniscan.pl -u http://WebsiteYouWantToScan.com/ -bqdw"
   (Change -bqdw to the options you want, but I would recommend these, for it will scan for SQL-i/LFI/RFI/XSS/ and more as well as Webshells, and Backdoors)
6. Hit ENTER and wait for uniscan to scan the website.
7. All vulnerabilities will be listed like the image below:
   
   
   
   
   
   THANKS TO SECURITY GEEKS FOR PICTURES:
   http://www.securitygeeks.net/2012/11/how-to-scan-website-for-vulnerabilities.html
   
   
   
   
   (‾⌣‾)♉ PEACE!