WMAP Cheat sheet

WMAP is a great http scanner. To load it you need to go into Msfconsole. Here is an example of how to use it.

msf>load wmap

.-.-.-..-.-.-..—..—.
| | | || | | || | || |-‘
`—–‘`-‘-‘-‘`-^-‘`-‘
[WMAP 1.5.1] === et [ ] metasploit.com 2012
[*] Successfully loaded plugin: wmap

msf>wmap_sites -a http://10.10.10.82

msf>wmap_sites -l

[*] Available sites
===============

Id Host Vhost Port Proto # Pages # Forms
— —- —– —- —– ——- ——-
0 10.10.10.64 10.10.10.64 80 http 0 0
1 10.10.10.82 10.10.10.82 80 http 0 0

msf>wmap_targets -d 1

[*] Loading 10.10.10.82,http://10.10.10.82:80/.

msf>wmap_run -e

[*] Using ALL wmap enabled modules.
[-] NO WMAP NODES DEFINED. Executing local modules
[*] Testing target:
[*] Site: 10.10.10.82 (10.10.10.82)
[*] Port: 80 SSL: false
============================================================
[*] Testing started. 2018-05-08 12:08:47 -0400
[*] Loading wmap modules…