Once enough data has been collected, vulnerabilities can be looked up from Common Vulnerabilities and Exposures (CVE) database sites.

CVE Database Sites:

🔗 https://nvd.nist.gov/

🔗 https://cve.mitre.org/

🔗 https://www.cvedetails.com/

Auto scripts

Find nmap vuln scripts:

ls -l /usr/share/nmap/scripts/ | grep vuln

Then use the appropriate ones with scans using the --script= parameter.

OpenVAS

Open source Vulnerability scanner similar to Nessus.

Initiate:

openvas-setup

Launch with Firefox on port 9392:

firefox https://127.0.0.1:9392

OWASP ZAP

Initiate:

owasp-zap

Setup the proxy in Firefox, default port 8080. Test the connection first:

firefox http://127.0.0.1:8080

Then browse through web application. It will collect vulnerabilities in the Alerts tab.