Home page logo
/

pen-test logo Penetration Testing mailing list archives

RE: Pay per use pentesting tool?
From: "Alex Eden" <Alex.Eden () senet-int com>
Date: Mon, 30 Jun 2008 16:22:23 -0400

WebInspect, before acquired by HP, required specifying upon installation of
the software/license what networks you would like to scan.

A month ago we purchased their 1-month license (a difficult and lengthy
procedure), and we had open range. We could scan anything.


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Mike Duncan
Sent: Monday, June 30, 2008 3:44 PM
To: natron
Cc: Ramki B Ramakrishnan; pen-test () securityfocus com
Subject: Re: Pay per use pentesting tool?

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Isn't Appscan's licensing model against this very thing? You can only
specify upon installation of the software/license what networks you
would like to scan. Unless I am missing a point by their sales
staff...let me know if so.

Mike Duncan
ISSO, Application Security Specialist
Government Contractor with STG, Inc.
NOAA :: National Climatic Data Center
151 Patton Ave.
Asheville, NC 28801-5001
mike.duncan () noaa gov
828.271.4289


natron wrote:
| Don't most of the automated web application testing tools follow this
| model?  I know IBM's AppScan does.
|
| On Mon, Jun 30, 2008 at 12:12 PM, Ramki B Ramakrishnan
| <bramkie () gmail com> wrote:
|> Thinking out of the box I wonder if there are any pay-per-use pentesting
|> tools, typically this could be used by consultants who are not into full
|> time testing. Are there any tools currently available in this model?.
|>
|> Thanks
|> Ramki
|>
|>
|>
|>
|> ------------------------------------------------------------------------
|> This list is sponsored by: Cenzic
|>
|> Top 5 Common Mistakes in
|> Securing Web Applications
|> Get 45 Min Video and PPT Slides
|>
|> www.cenzic.com/landing/securityfocus/hackinar
|> ------------------------------------------------------------------------
|>
|>
|
| ------------------------------------------------------------------------
| This list is sponsored by: Cenzic
|
| Top 5 Common Mistakes in
| Securing Web Applications
| Get 45 Min Video and PPT Slides
|
| www.cenzic.com/landing/securityfocus/hackinar
| ------------------------------------------------------------------------
|
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIaTeGnvIkv6fg9hYRAmB8AJ99VIeU17WkUy1EFbh5wdilpJp2ugCfdcP2
DcJagpZqz8vaxYb0ujU3j/g=
=dtJY
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault