Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Automagic webapp testing tools

from [Leigh Morresi] Network Security [Permanent Link]
Subject: Re: Automagic webapp testing tools
Date: Mon, 21 Mar 2005 13:53:50 +1000 
I use a took called AutoIT to script some events, i can make the
coldfusion stuff at work fall over after a while if i repeat the same
process a thousand times :)

leigh


On 18/3/2005, "robert@dyadsecurity.com" <robert@dyadsecurity.com> wrote:


Evans, Arian(Arian.Evans@fishnetsecurity.com)@Thu, Mar 10, 2005 at 12:35:58PM 
-0600:

4. No substitute for manual testing.


In my mind, these tools are most powerful when used by the manual
testers.  It allows for a stimulus to be consistently applied to all inputs in
the application the same way every time.  No human has the stamina for
that on a large app :).

That said, the commercial tools I've evaluated are all lacking in
important features.  I think it's still an immature market with plenty
of room for new players who have good ideas.

Robert

--
Robert E. Lee
CTO, Dyad Security, Inc.
W - http://www.dyadsecurity.com
E - robert@dyadsecurity.com
M - (949) 394-2033


--
There's an interesting phenomenon that's known as "Andy giveth, and
Bill taketh away" No matter how fast processors get, software
consistently finds new ways to eat up the extra speed.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Web security breach changes the lives of 119 people, Jeff Williams
Next by Date:  Re: phpBB Ban, Daniel
Previous by Thread:  Re: Automagic webapp testing tools, robert
Next by Thread:  PHP Directory Transversal, Andres Molinetti
Indexes:  [Date] [Thread] [Top] [All Lists]