استعمال أداة فيجا Vega

1. Find out Clear Text Password over HTTP Vulnerability in your web application using Vega.

In Kali Linux 2.0

Applications -- > Web Application Analysis --> Vega

2.Scan your Web Application using Vega.

Scan --> Start New Scan --> Enter Base URI Scan

3.Click Next --> Select Modules --> Cleartext Password Over HTTP

Click Finish.Vega will find out Clear Text Password over HTTP Vulnerability in your web application if it is present.

4.Open Wireshark , sniff the traffic and add filter “http.request.method == POST”

5.Open login link in browser , enter username password  and check wireshark. 

افتح رابط تسجيل الدخول في الواير شارك للفحص

وشكرا لكم