Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.</p>
<p>Arachni is smart, it trains itself by learning from the HTTP responses it receives during the audit process. Unlike other scanners, Arachni takes into account the dynamic nature of web applications and can detect changes caused while travelling through the paths of a web application’s cyclomatic complexity. This way attack/input vectors that would otherwise be undetectable by non-humans are seamlessly handled by Arachni.</p>
<h3>Changelog Arachni v0.4.7</h3>
Fixed mixed up status messages upon out-of-scope redirections.
disable_ssl_host_verification set to true.
Fixed bug when checking for trust level of issue when there’s no match.
Updated to handle empty base-href values.
Updated to handle stacked post-login redirects.
Added debugging information for failed logins.
Fixed forwarding of request bodies.
Updated descriptions and remedies.
<h3>Changelog Web User Interface v0.4.4 Released</h3>