Vulmap is one tool vulnerability scanner that can detect security holes in Web containers, Web servers, Web middleware, CMS and other programs. It has scanning and exploit functions.
Vulmap as we mentioned above has scan (poc) and exploit (exp) functions. Use “-m” to select which mode to use. THE default function is the poc.
The poc function also supports "-f" for mass scanning of a target, "-o" for displaying results and many other key functions.
The exploit operation, but the exploitation will take place immediately and the exploitation result will be fed to further verify if the vulnerability exists and if it can be exploited.
You can use "-a" to specify target types to reduce false positives, such as "-a solr".
Installation
It is recommended that your operating system has python3, python3.7 or higher version.
Linux & MacOS & Windows
python3 vulmap.py -u http://example.com