OWASP OWTF Installation

Tao Sauvage edited this page Jul 1, 2015 · 46 revisions
Clone this wiki locally

OWASP OWTF should work on most linux distros and linux derivatives. There are a few ways to install it, these are explained below.

Recommended Ways

Installation by script (recommended)

This method is now the recommended way, please report bugs on our issue tracker: https://github.com/owtf/owtf/issues

Paste this in your terminal:

wget https://raw.githubusercontent.com/owtf/bootstrap-script/master/bootstrap.sh
bash bootstrap.sh

Installation via git clone (outdated, do not use)

git clone https://github.com/owtf/owtf  
cd owtf/install/  
python install.py
cd ..
cd tools/restricted/hoppy-1.8.1
wget --no-check-certificate https://labs.portcullis.co.uk/download/hoppy-1.8.1.tar.bz2; bunzip2 *; tar xvf *; rm -f *.tar

NOTE: For some reason wget does not like the cert of labs.portcullis.co.uk, even though seems fine from a browser

Use git to clone owtf repository

git clone https://github.com/7a/owtf
  • Install some required tools and libraries using install script
python install/install.py
  • Select the appropriate linux distro when prompted. If your distro is absent don't panic.

NOTE: If owtf fails to start because of some python library, make sure you have the latest versions of these libraries installed

Manual Installation

  • Clone owtf github repository
  • Install pip using your package manager
  • Edit profiles/general/default.cfg with appropriate tool paths
  • You should be good to go :)

P.S: Please consider sending us a pull request with install script for your install script. Help present here

One Time Use

  • Download any stable version of OWTF with the help of github tags
  • Install some required tools and libraries using install script

NOTE: For updating OWTF, check out this