jackhammer icon indicating copy to clipboard operation
jackhammer copied to clipboard

Published 20 hours ago verified publisher icon olacabs

Not able to scan any website or apk from jackhammer

Open hackerabhinavverma opened this issue 8 years ago • 12 comments

Hi

I have installed Jakhammer in a docker of my ubuntu machine.

I have tried to scan multiple website but it is not giving any result after scan s completed. i have tried demo.testfire.com and multiple vulnerable website available to see how it works but unfortunately i am not able to see any result (As these are vulnerable website it should give result). I also installed DVWA and Webgoat in docker and tried to scan the those but still i am not getting any result.

Am i doing anything wrong or scanner is not working.

jack

hackerabhinavverma avatar May 15 '17 05:05 hackerabhinavverma

@hackerabhinavverma you need to check your setting that you haven't disabled any scanners. demo.testfire scan would like : https://jch.olacabs.com/findings?scan_id=1 Also, DVWA scan won't give you any result as there are presently no php scanner. You could go ahead and add any scanner following these steps : https://jch.olacabs.com/userguide/adding_new_tool/

shadsidd avatar May 15 '17 07:05 shadsidd

I have enabled every scanner from the settings while starting the scan. I also tried http://crackme.trustwave.com. I am able to scan from nmap but not able to scan anything from androscanner or Arachni. Is there any limitation of the Arachni scanner ?

In Androscanner i tried to upload multiple apk's which is working properly on my mobile. but it is giving me error the of not a valid file format.

hackerabhinavverma avatar May 15 '17 07:05 hackerabhinavverma

@hackerabhinavverma haven't received these issues from anyone yet. Not sure if you faced any errors in installing? Arachni and andro scanner should work pretty fine. Can you check the logs and share details

shadsidd avatar May 15 '17 07:05 shadsidd

+1 .

Facing the same issue while running web target scan.

23ranjan avatar May 15 '17 11:05 23ranjan

+1

Also but only on web.

NitescuLucian avatar May 15 '17 12:05 NitescuLucian

can you please share logs from web/app/log/scans/(scan_id).log ?

kmadhusudhan avatar May 16 '17 06:05 kmadhusudhan

@KMadhuSudhan Well for some reasons my log directory is empty , not sure why ..

23ranjan avatar May 16 '17 10:05 23ranjan

login to web docker and get logs from log/scans/scan_id.log

kmadhusudhan avatar May 16 '17 11:05 kmadhusudhan

When trying to scan for mobile apk getting error as :Project target content type is invalid....could u pl. guide me

gmahesh123 avatar May 17 '17 12:05 gmahesh123

Fixed in latest commit, please check.

shadsidd avatar May 26 '17 07:05 shadsidd

When I run the command docker-compose up -d the web docker is not running only sql and redis is up and running can some one help me, Thanks in advance.

ksk26 avatar Aug 03 '17 11:08 ksk26

Installed latest release. Scan Mobile Target seems to be broken. The app doesn't identify an apk and throws the Project target content type is invalid error. There is also no Add Scan Target button on this screen.

juushya avatar Aug 18 '17 23:08 juushya