Updated README, example configs

README.md

@@ -18,36 +18,20 @@ Supported scanners and their profiles:
 
 * `w3af`
 	* `fast_scan`: no parameters
+	* `auth_scan`: provide login parameters so that w3af can scan resources, available only to logged-in users - parameters:
+		* username
+		* password
+		* username_field
+		* password_field
+		* auth_url
+		* check_url
+		* check_string
 * `zap`
 	* `basic`: no parameters
 * `nmap`
 	* `basic_discovery`: no parameters
 
-Example JSON config file:
-
-```
-{
-    "target": {
-        "url": "https://172.17.0.1/webapp/path/",
-        "ip": "172.17.0.1"
-    },
-    "config": {
-        "w3af": {
-            "profile": "fast_scan"
-        },
-        "zap": {
-            "profile": "basic"
-        },
-        "nmap": {
-            "profile": "basic_discovery"
-        }
-    }
-}
-```
-
-### TODOs and FIXMEs:
-
-* include some configuration options (at least authenticated scans for w3af)
+*See example config files in `config-examples` folder.*
 
 
 [cscan]: <https://github.com/infobyte/cscan>

config-examples/all-modules-basic.json

+{
+    "target": {
+        "url": "https://172.17.0.1/webapp/path/",
+        "ip": "172.17.0.1"
+    },
+    "config": {
+        "w3af": {
+            "profile": "fast_scan"
+        },
+        "zap": {
+            "profile": "basic"
+        },
+        "nmap": {
+            "profile": "basic_discovery"
+        }
+    }
+}

config-examples/auth-config.json

 {
     "target": {
-        "url": "http://192.168.1.184/bWAPP/"
+        "url": "http://192.168.1.184/bWAPP/login.php"
     },
     "config": {
         "w3af": {
@@ -14,9 +14,6 @@
                 "check_url": "http://192.168.1.184/bWAPP/portal.php",
                 "check_string": "Welcome Bee"
             }
-        },
-        "zap": {
-            "profile": "basic"
         }
     }
 }