Wikipedia

Dynamic application security testing: Difference between revisions

Browse history interactively
Next edit →
Content deleted Content added
VisualWikitext
NEUrOO (talk | contribs)
68 edits
Created page with 'Web Application Security Scanners (or Web Application Vulnerability Scanners) are tools designed to automatically scan web applications for potential vulnerabilitie...'
 
NEUrOO (talk | contribs)
68 edits
Add a list of tools
Line 1:
Web Application Security Scanners (or Web Application Vulnerability Scanners) are tools designed to automatically scan web applications for potential vulnerabilities. These tools differ from general vulnerability assessment tools in that they do not perform a broad range of checks on a myriad of software and hardware. Instead, they perform other checks, such as potential field manipulation and cookie poisoning, which allows a more focused assessment of web applications by exposing vulnerabilities of which standard VA tools are unaware.
 
== Some Instances ==
Here is a list of known tools
 
=== Commercial tools ===
* [http://www.acunetix.com Acunetix WVS] by Acunetix
* [http://watchfire.com/products/appscan/default.aspx AppScan] DE by Watchfire, Inc.
* [http://www.cenzic.com/products_services/cenzic_hailstorm.php Hailstorm] by Cenzic
* [http://nstalker.com/eng/products/nstealth/ N-Stealth] by N-Stalker
* [http://www.ntobjectives.com/products/ntospider.php NTOSpider] by NTObjectives
* [http://www.spidynamics.com/webinspect/index/html WebInspect] by SPI Dynamics
* [http://parasoft.com/jsp/products/home.jsp?product=WebKing&itemID=86 WebKing] by Parasoft
 
=== Free/OpenSource Tools ===
* [http://www.owasp.org/index.php/Category:OWASP_Pantera_Web_Assessment_Studio_Project Pantera] by Simon Roses Femerling (OWASP Project)
* [http://parosproxy.org/index.shtml Paros] by Chinotec
* [http://www.immunitysec.com/resources-freesoftware.shtml Spike Proxy] by Immunity (Now as OWASP Pantera)
* [http://www.pushtotest.com/Downloads/features.html TestMaker] by Pushtotest
* [http://www.owasp.org/index.php/Category:OWASP_WebScarab_Project WebScarab] by Rogan Dawes of Aspect Security (OWASP Project)
* [http://wapiti.sourceforge.net Wapiti] by Nicolas Surribas
* [http://w3af.sourceforge.net W3AF] by Andres Riancho
* [http://rgaucher.info/beta/grabber Grabber] by Romain Gaucher
Retrieved from "https://en.wikipedia.org/wiki/Dynamic_application_security_testing"