Penetration Testing: Re: Web Application Vulnerability scanner

[dmc () digitalapocalypse net]

Rigo,

A couple of tools you could take a look at are Paros Proxy (opensource),
SPI Dynamics Web Inspect (commercial) or Acunetix Web Vulnerability
Scanner (commercial).

OWASP have provided a nice vulnerable platform as a training mechanism but
you could use it as a standard to compare various scanners against:-
http://www.owasp.org/index.php/Category:OWASP_WebGoat_Project

- dmc
> Hi all,
>
> I need to evaluate a Web Application Vulnerability scanner Tool, There
> is anybody who has experience using this kind of tool, or someone that
> could give me a link o reference to reviews or benchmarks about this
> tools (The most used or something like this).
>
> Regards,
> Rigo
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> ------------------------------------------------------------------------


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------