Serg, this is covered in depth on pen-test_at_SF.
> -----Original Message-----
> From: Serg B. [mailto:serg.belokamen_at_gmail.com]
> Sent: Friday, February 17, 2006 7:45 AM
> To: webappsec_at_securityfocus.com
> Subject: Re: FW: Tools comparison and evaluation question (AppScan)
>
> Just to direct the topic a little bit:
> Can anyone also recomed some good general pen-testing tools? So
> something that is not specific to web application testing.
> Doesn't have to be open source. Something a long the lines of Nessus.
Well, Nessus is for VA. Do you mean Vuln analysis or penetration?
I have used Core Impact, CANVAS, Metasploit, and Visionael, which
is currently end of life. I recommend posting to that list for
people who focus on network/non-webappsec pen testing or vulnerability
assessment for more detailed responses.
-ae
-------------------------------------------------------------------------
This List Sponsored by: SpiDynamics
ALERT: "How A Hacker Launches A Web Application Attack!"
Step-by-Step - SPI Dynamics White Paper
Learn how to defend against Web Application Attacks with real-world
examples of recent hacking methods such as: SQL Injection, Cross Site
Scripting and Parameter Manipulation
https://download.spidynamics.com/1/ad/web.asp?Campaign_ID=701300000003gRl
--------------------------------------------------------------------------
Received on Feb 18 2006
Intro
