Thursday , 27 October 2016

How to use Vega Web Vulnerability Scanner in Kali Linux

How to use Vega Web Vulnerability Scanner in Kali Linux

How to use Vega Web Vulnerability Scanner in Kali Linux :- 

Vega is an open source platform to test the Security and Vulnerability of web applications. Vega can help you find and validate SQL Injections, Cross-Site Scripting (XSS), inadvertently disclosed sensitive information, and other vulnerabilities. It is written in Java, GUI based, and runs on Linux, OS X, and Windows.

Vega includes an automated scanner for quick tests and an intercepting proxy for tactical inspection. Vega can be extended using a powerful API in the language of the web: Javascript.

Modules used in Vega:-

  • Cross Site Scripting (XSS)
  • SQL Injection
  • Directory Traversal
  • URL Injection
  • Error Detection
  • File Uploads
  • Sensitive Data Discover

Core functions of Vega:

  • Automated Crawler and Vulnerability Scanner
  • Consistent UI
  • Website Crawler
  • Intercepting Proxy
  • Content Analysis
  • Extensibility through a Powerful Javascript Module API
  • Customizable alerts
  •  Database and Shared Data Model

Vega Web scanner is newely included in Kali 1.0.4 . If you don’t have Vega use the command apt-get update and apt-get upgrade.

Now go to the Application > Kali Linux > Web Applications > Web Vulnerability Scanner > select the Vega 

or Simply type the command vega on the terminal


Now click on the Scan and select the option Start the New scan


Now enter you target website that you want to scan


Now you have the two options Injection Modules and . Select modules do you want to run. For example if you want to know only XSS injection then just check it and uncheck other option. and click on the Next.


here you can configure cookies and authentication identity or leave it blank. Click on the Next


Now click on the Finish to start the scan. After completing the scan it will show you the available vulnerability in your target website with the High , Medium , Low and Info categories.


like in the above result, it,s showing the Cross-site vulnerability. so click on the cross-site scripting tab. in the right pane it will show you Classification , resources and method of particular vulnerability.


Now click on the Request tab to see the more details about vulnerability.


So, enjoy the Vega Web Vulnerability Scanner in Kali Linux.

Hope you like my post.How to use Vega Web Vulnerability Scanner in Kali Linux. Please Share with others.

Use Facebook to Comment on this Post

About Syed Balal Rumy

A 27 year Tech Geek and a blogger from India ( Bihar ) , live in New Delhi. I am MCITP , CEHv8 , CCNA , CCNA Security , CCNP Security , Security + and CCSA certified. Loves to write tech articles based on my real experiences.

Powered by