The exploitation phase of the kill chain is the most dangerous one for the penetration tester or attacker – they are directly interacting with the target network or system and there is a good chance that their activity will be logged or their identity discovered. Again, stealth must be employed to minimize risks to the tester. Although no specific methodology or tool is undetectable, there are some configuration changes and specific tools that will make detection more difficult.
Another scanner worth using is the Web Application Attack and Audit Framework (w3af), a Python-based open source web application security scanner. It provides preconfigured vulnerability scans in support of standards such as OWASP. The breadth of the scanner's options comes at a price – it takes significantly longer than other scanners to review a target, and it...
