Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Open Source Application Vulnerability Assessment Tools

from [Brokken, Allen P.] Network Security [Permanent Link]
Subject: Open Source Application Vulnerability Assessment Tools
Date: Wed, 27 Sep 2006 14:40:19 -0500 
        
On this list we talk a lot about various vendor provided tools quite a
bit.  In general it appears most solutions are Windows-centric in their
installation even if they work against multiple platforms.  

With the prevalence of LAMP systems I would figure there must be some
means of doing a security assessment on their applications with native
tools.  It seems odd to me that there isn't a NESSUS equivalent for
application testing.  I'm wondering what is available from the Open
Source community in the way of

* Black Box web assessment software
* Source code assessment software
* Assessment management software

I'm more looking for names/urls to projects than I am for any
comparisons or descriptions.

Allen Brokken

Information Security and Account Management - IAT Services - University
of Missouri -brokkena@missouri.edu - (573)884-8708


-------------------------------------------------------------------------
Sponsored by: Watchfire

It's been reported that 75% of websites are vulnerable to attack. That's 
because hackers know to exploit weaknesses in web applications. 
Traditional approaches to securing these assets no longer apply. Download 
the "Addressing Challenges in Application Security" whitepaper today, and 
see for yourself.

https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008Vmw
--------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Interview With Modsecurity Author Ivan Ristic, bugtraq
Next by Date:  XML File Inclusion and Path Traversal Attacks (was RE: XML Port Scanning), Jan P. Monsch
Previous by Thread:  Interview With Modsecurity Author Ivan Ristic, bugtraq
Next by Thread:  Re: Open Source Application Vulnerability Assessment Tools, Stephen de Vries
Indexes:  [Date] [Thread] [Top] [All Lists]