fixup! Web security audit base pipeline

resources/com/cadoles/w3af/audit.w3af.tmpl

@@ -2,7 +2,7 @@
 #                                              W3AF AUDIT SCRIPT FOR WEB APPLICATION
 # -----------------------------------------------------------------------------------------------------------
 
-#Configure HTTP settings
+# Configure HTTP settings
 http-settings
 set timeout {{ default 10 .W3AF_TIMEOUT }}
 {{ if .W3AF_BASIC_AUTH_USERNAME }}
@@ -14,7 +14,7 @@ set basic_auth_domain {{ .W3AF_BASIC_AUTH_DOMAIN }}
 {{ end }}
 back
 
-#Configure scanner global behaviors
+# Configure scanner global behaviors
 misc-settings
 set max_discovery_time {{ default 10 .W3AF_MAX_DISCOVERY_TIME }}
 set fuzz_cookies True
@@ -29,8 +29,16 @@ back
 
 plugins
 
+# Configure rfi plugin
+audit rfi
+audit config rfi
+set listen_address "0.0.0.0"
+set listen_port 44449
+set use_w3af_site True
+back
+
 {{ if .W3AF_AUTH_FORM_URL }}
-#Configure target authentication
+# Configure target authentication
 auth detailed
 auth config detailed
 set username {{ .W3AF_AUTH_FORM_USERNAME }}
@@ -46,7 +54,7 @@ back
 {{end}}
 
 
-#Configure reporting in order to generate an HTML report
+# Configure reporting in order to generate an HTML report
 output console, html_file
 output config html_file
 set output_file reports/report{{- if .W3AF_REPORT_SUFFIX -}}_{{- .W3AF_REPORT_SUFFIX -}}{{- end -}}.html
@@ -58,7 +66,7 @@ set verbose {{ default "False" .W3AF_VERBOSE }}
 back
 back
 
-#Set target informations, do a cleanup and run the scan
+# Set target informations, do a cleanup and run the scan
 target 
 set target {{ .W3AF_TARGET_URL }}
 set target_os {{ default "unix" .W3AF_TARGET_OS }}