diff --git a/usr/share/blackbox/yaml/netinstall-webapp.yaml b/usr/share/blackbox/yaml/netinstall-webapp.yaml
new file mode 100644
index 0000000..58b0242
--- /dev/null
+++ b/usr/share/blackbox/yaml/netinstall-webapp.yaml
@@ -0,0 +1,443 @@
+- name: "WebApp"
+  description: "WebApp"
+  critical: false
+  hidden: false
+  selected: false
+  expanded: true
+  packages:
+    - 0d1n
+    - abuse-ssl-bypass-waf
+    - adfind
+    - adminpagefinder
+    - albatar
+    - allthevhosts
+    - anti-xss
+    - apachetomcatscanner
+    - arachni
+    - archivebox
+    - arjun
+    - asp-audit
+    - astra
+    - atlas
+    - atscan
+    - aws-extender-cli
+    - backcookie
+    - badministration
+    - bbqsql
+    - bbscan
+    - belati
+    - bfac
+    - bing-lfi-rfi
+    - bitdump
+    - blindelephant
+    - blisqy
+    - brakeman
+    - brute-force
+    - brutemap
+    - brutexss
+    - bsqlbf
+    - bsqlinjector
+    - burpsuite
+    - c5scan
+    - cangibrina
+    - cansina
+    - cent
+    - chankro
+    - cintruder
+    - cjexploiter
+    - clairvoyance
+    - cloudget
+    - cms-explorer
+    - cms-few
+    - cmseek
+    - cmsfuzz
+    - cmsmap
+    - cmsscan
+    - cmsscanner
+    - comission
+    - commentor
+    - commix
+    - conscan
+    - corscanner
+    - corstest
+    - corsy
+    - cpfinder
+    - crabstick
+    - crackql
+    - crawlic
+    - crlf-injector
+    - csrftester
+    - cybercrowl
+    - d-tect
+    - dalfox
+    - darkbing
+    - darkd0rk3r
+    - darkdump
+    - darkjumper
+    - darkmysqli
+    - darkscrape
+    - davscan
+    - dawnscanner
+    - dcrawl
+    - detectem
+    - dff-scanner
+    - dirb
+    - dirble
+    - dirbuster
+    - dirbuster-ng
+    - directorytraversalscan
+    - dirhunt
+    - dirscanner
+    - dirscraper
+dirsearch
+dirstalk
+docem
+domi-owned
+dontgo403
+doork
+dorknet
+dpscan
+droopescan
+drupal-module-enum
+drupalscan
+drupwn
+dsfs
+dsjs
+dsss
+dsstore-crawler
+dsxs
+dumb0
+easyfuzzer
+eazy
+eos
+epicwebhoneypot
+evine
+extended-ssrf-search
+eyewitness
+facebot
+facebrute
+fbht
+fdsploit
+feroxbuster
+ffuf
+fhttp
+filebuster
+filegps
+fingerprinter
+flashscanner
+flask-session-cookie-manager2
+flask-session-cookie-manager3
+flask-unsign
+flunym0us
+fockcache
+fuxploider
+gau
+ghauri
+ghost-py
+git-dumper
+gitdump
+gittools
+gobuster
+golismero
+goop-dump
+gopherus
+gospider
+gowitness
+grabber
+graphinder
+graphql-cop
+graphql-path-enum
+graphqlmap
+graphw00f
+gwtenum
+h2buster
+h2csmuggler
+h2t
+hakku
+hakrawler
+halberd
+hetty
+hookshot
+host-extract
+htcap
+http2smugl
+httpforge
+httpgrep
+httppwnly
+httpx
+hyperfox
+identywaf
+imagejs
+injectus
+interactsh-client
+inurlbr
+ipsourcebypass
+isr-form
+jaeles
+jaidam
+jast
+jboss-autopwn
+jdeserialize
+jexboss
+jira-scan
+jok3r
+jomplug
+jooforce
+joomlascan
+joomlavs
+joomscan
+jsearch
+jshell
+jsonbee
+jsparser
+jsql-injection
+jstillery
+juumla
+jwt-hack
+kadimus
+katana-pd
+keye
+kiterunner
+kolkata
+konan
+kubolt
+laf
+laudanum
+lbmap
+letmefuckit-scanner
+leviathan
+lfi-exploiter
+lfi-fuzzploit
+lfi-image-helper
+lfi-scanner
+lfi-sploiter
+lfifreak
+lfimap
+lfisuite
+liffy
+lightbulb
+linkfinder
+list-urls
+log4j-bypass
+log4j-scan
+lorsrf
+lulzbuster
+magescan
+mando.me
+mantra
+maryam
+meg
+metoscan
+monsoon
+mooscan
+morxtraversal
+mosquito
+multiinjector
+mwebfp
+nikto
+nosqli
+nosqli-user-pass-enum
+nosqlmap
+novahot
+nuclei
+okadminfinder
+onionsearch
+opendoor
+otori
+owasp-bywaf
+owtf
+pappy-proxy
+parameth
+parampampam
+paranoic
+paros
+payloadmask
+pblind
+peepingtom
+photon
+php-findsock-shell
+php-malware-finder
+php-vulnerability-hunter
+phpggc
+phpsploit
+pinkerton
+pixload
+plecost
+plown
+poly
+poracle
+pown
+ppfuzz
+ppmap
+proxenet
+pureblood
+pwndrop
+pyfiscan
+pythem
+python-arsenic
+python-jsbeautifier
+python-witnessme
+python2-jsbeautifier
+rabid
+rapidscan
+ratproxy
+rawr
+recsech
+red-hawk
+remot3d
+restler-fuzzer
+richsploit
+riwifshell
+ruler
+rustbuster
+rww-attack
+sawef
+scanqli
+scrapy
+scrying
+second-order
+secretfinder
+secscan
+see-surf
+serializationdumper
+shellinabox
+shortfuzzy
+shuffledns
+sitadel
+sitediff
+sjet
+skipfish
+smplshllctrlr
+smuggler
+smuggler-py
+snallygaster
+snare
+snuck
+sourcemapper
+spaf
+sparty
+spiga
+spike-proxy
+spipscan
+sprayingtoolkit
+sqid
+sqlbrute
+sqldict
+sqlivulscan
+sqlmap
+sqlninja
+sqlping
+sqlpowerinjector
+sqlsus
+ssrf-sheriff
+ssrfmap
+stews
+striker
+subjs
+swarm
+swftools
+taipan
+themole
+tidos-framework
+tinfoleak
+tinfoleak2
+tomcatwardeployer
+torcrawl
+tplmap
+typo3scan
+uatester
+ufonet
+uncaptcha2
+uniscan
+uppwn
+urlcrazy
+urldigger
+urlextractor
+v3n0m
+vane
+vanguard
+vbscan
+vega
+visql
+vsvbp
+vulnerabilities-spider
+vulnx
+w13scan
+w3af
+wafninja
+wafp
+wafpass
+wafw00f
+wapiti
+wascan
+waybackpack
+wcvs
+web-soul
+webacoo
+webanalyze
+webborer
+webenum
+webexploitationtool
+webhandler
+webhunter
+webkiller
+webpwn3r
+webrute
+webscarab
+webshag
+webshells
+webslayer
+webspa
+webtech
+webxploiter
+weevely
+weirdaal
+wfuzz
+whatwaf
+whatweb
+whichcdn
+whitewidow
+wig
+witchxtool
+wmat
+wordbrutepress
+wordpress-exploit-framework
+wordpresscan
+wpbf
+wpbrute-rpc
+wpbullet
+wpforce
+wpintel
+wpscan
+wpseku
+ws-attacker
+wsfuzzer
+wssip
+wuzz
+x8
+xmlrpc-bruteforcer
+xspear
+xsrfprobe
+xss-freak
+xsscon
+xsscrapy
+xsser
+xssless
+xsspy
+xsss
+xssscan
+xsssniper
+xsstrike
+xssya
+xwaf
+xxeinjector
+xxexploiter
+xxxpwn
+xxxpwn-smart
+yaaf
+yasuo
+yawast
+ycrawler
+yinjector
+ysoserial
+zaproxy