WMAP can also be used to perform a distributed assessment of a target. This feature allows multiple instances of WMAP running on different servers to work together in a master-slave model, as shown here:
The WMAP master takes the target and distributes it across the slaves automatically in the form of jobs. The jobs, when completed, report back to the master with results that are stored in the master's database:
- Let's add a site for scanning:
- Use the crawler on the site using the auxiliary/scanner/http/crawler module; set the options accordingly:
- Run the crawler to gather the forms and pages:
- Confirm the number of pages/forms found from crawling using the wmap_sites -l command:
- Let's set up the WMAP nodes for distributed scanning. We will run msfrpcd on the nodes using the msfrpcd -U <user> -P <password> command...
