| ... | ... | @@ -98,7 +98,6 @@ h3. Command reference |
|
|
|
## "Redundant ==(--redundant)==":#redundant
|
|
|
|
## "Audo-redundant ==(--auto-redundant)==":#auto-redundant
|
|
|
|
## "Follow subdomains ==(-f/--follow-subdomains)==":#follow-subdomains
|
|
|
|
## "Obey robots.txt file ==(--obey-robots-txt)==":#obey-robots-txt
|
|
|
|
## "Depth limit ==(--depth)==":#depth
|
|
|
|
## "Link count limit ==(--link-count)==":#link-count
|
|
|
|
## "Redirect limit ==(--redirect-limit)==":#redirect-limit
|
| ... | ... | @@ -109,6 +108,7 @@ h3. Command reference |
|
|
|
## "Audit forms ==(--audit-forms/-p)==":#audit-forms
|
|
|
|
## "Audit cookies ==(--audit-cookies/-c)==":#audit-cookies
|
|
|
|
## "Exclude cookie ==(--exclude-cookie)==":#exclude-cookie
|
|
|
|
## "Exclude vector ==(--exclude-vector)==":#exclude-vector
|
|
|
|
## "Audit headers ==(--audit-headers)==":#audit-headers
|
|
|
|
# "Coverage":#coverage
|
|
|
|
## "Audit cookies extensively ==(--audit-cookies-extensively)==":#audit-cookies-extensively
|
| ... | ... | @@ -705,6 +705,14 @@ Usually used to avoid auditing a session ID cookie from the cookie-jar. |
|
|
|
However, some extra cautious websites may invalidate/block the session upon receiving an invalid token.
|
|
|
|
This is very unlikely but it's better to err on the side of caution.
|
|
|
|
|
|
|
|
h3(#exclude-vector). "Exclude cookie ==(--exclude-vector)==":#exclude-vector
|
|
|
|
|
|
|
|
*Expects*: input name
|
|
|
|
*Default*: disabled
|
|
|
|
*Multiple invocations?*: yes
|
|
|
|
|
|
|
|
Tells Arachni to exclude -- not audit -- an input vector by name.
|
|
|
|
|
|
|
|
h3(#audit-headers). "Audit headers ==(--audit-headers)==":#audit-headers
|
|
|
|
|
|
|
|
*Expects*: <n/a>
|
| ... | ... | |
