Security Basics mailing list archives
Re: apache-tomcat
From: Alcides <alcides.hercules () gmail com>
Date: Thu, 17 Aug 2006 10:24:50 +0530
Hi Luis, Thanks for your reply. It seems acunetix does that better as compared to nessus 2.2.4 -for Linux(the one that I have). List, But can any one suggest other 'method' or 'combination of Open Source/free products' that will yield results as good as or better than "Acunetix web vulnerability scanner". Thanks in advance. On 8/16/06, Luis E. Alvarado Day <lalvarado () frro utn edu ar> wrote:
Acunetix Web Vulnerability Scanner 3, has a good directory check list. If you try it, please let me know which acunetix or nessus has better dir discovery performance. Luis Alvarado Day www.leadsi.com.ar Rosario | Argentina -----Mensaje original----- De: Alcides [mailto:alcides.hercules () gmail com] Enviado el: MiƩrcoles, 16 de Agosto de 2006 05:21 a.m. Para: security-basics () securityfocus com Asunto: apache-tomcat HI list, I wish to test how secure my tomcat server (http://xxx.yyy.zzz.qqq:8080)is. I have tomcat server: Apache-Coyote/1.1 and having a default install. I tried basic things like default usernames/passwds. I tried nessus scan. I tried nikto scan also. It reavelead some of the directories present on serverside, but not all. Now, 1.Can any one tell me about the tool to discover all the accsessibe directories on server/webserver. 2.What more can be tried to test the security of the above server. Thanks in advance.
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- apache-tomcat Alcides (Aug 16)
- RE: apache-tomcat Luis E. Alvarado Day (Aug 17)
- Message not available
- Re: apache-tomcat Alcides (Aug 17)
- Message not available
- Re: apache-tomcat Alcides (Aug 25)