In this recipe, we will learn how to use W3af to find vulnerabilities within a target web application. W3af is a web application attack and audit framework. The project's goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities.
To step through this recipe, you will need Kali Linux running on Oracle Virtualbox and an Internet connection. No other prerequisites are required.
For this recipe, you need to perform the following steps:
w3af_gui; the w3af window will be as shown in the following screenshot: