Please read the Disclaimer.
Once enough data has been collected, vulnerabilities can be looked up from Common Vulnerabilities and Exposures (CVE) database sites.
CVE Database Sites:
nmap vuln scripts:
ls -l /usr/share/nmap/scripts/ | grep vuln
Then use the appropriate ones with scans using the
Open source Vulnerability scanner similar to Nessus.
Launch with Firefox on port
Setup the proxy in Firefox, default port
8080. Test the connection first:
Then browse through web application. It will collect vulnerabilities in the Alerts tab.