twwwscan can help network administrators find security
vulnerabilities in their web servers.

network security purpose only.

i do not want you use twwwscan against any resources
without prior authorization.


regards
pilot (korean dude)
http://search.iland.co.kr


twwwscan's history

v1.2  - 2001/02/19
included twwwscan's user expert scanner(tuxe)-supported flexible rule,virtual host,HTTP 1.1,
request injection.

please read rule.uxe file

tuxe can test cgi(webserver) buffer overflow,denial of service and
tuxe can test your IDS against stealth cgi scan
included twwwscan's report crypto util(tcrypto)-blowfish support&secure e-mail
(encrypt/decrypt)

supported report(each host).html ex)hostname.html

supported virtual host scan.
supportted GET method - t1 option.
include Last(2001/02/19) WWW Vulnerabilities 400 over bugs check.
added -t1 -t2 -t3 option.

more web server defense information.

p.s if you make a new rule file, send to e-mail search@iland.co.kr

v0.7  - 2000/12/23
supported report(html type report)-make a report.html

added display type -v option
included completed NT/2000 IIS detail patch information
included more webserver defense information.
CVE information support(only NT/2000)
next version 0.8 will include *nix CVE information
support advertising(company,security information,...)
last(~2000/12/23) 300 over www bugs check



v0.61 - 2000/11/19
fixed -pw option

v0.6 - 2000/11/16
(~2000/11/16) 300+ www bugs checked
delete internet information option -i
added iissample.exe
added nesscan.exe
added trans.pl
added some directory scan
fixed against redhat 7 webserver detection

maybe detailed windows nt/2000 patch information
to be next version . sorry :-<


v0.5 - 2000/09/03
Web Server Detection Improved
added http_port
bug fixed(memory problem)
(~03/09/2000) 227 bugs checked


v0.45 - 2000/08/06
Internet Infromation bug patched
Detect Web Server Improved

v0.4 - 2000/07/20

bug fixed
added Internet Information.

v0.3 - 2000/05/30
added passive mode
scan interface changed.

v0.2 - 2000/05/15
added anti-IDS url encoding.

v0.1 - 2000/04/30
72 NT WWW Vulnerability scan
