Educause Security Discussion mailing list archives
Re: Experiences with Web application vulnerability assessment (1) software (2) companies
From: "Johnson, Kevin" <kfj () PITT EDU>
Date: Wed, 27 Feb 2008 13:19:56 -0500
I second WebInspect. It's been valuable for security and QA. The vulnerability descriptions are detailed and contain good references. Kevin Johnson Senior Information Security Analyst University of Pittsburgh -----Original Message----- From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Gary Dobbins Sent: Wednesday, February 27, 2008 12:58 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Experiences with Web application vulnerability assessment (1) software (2) companies We use WebInspect - like it.
-----Original Message----- From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Morrow Long Sent: Wednesday, February 27, 2008 12:51 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: [SECURITY] Experiences with Web application vulnerability assessment (1) software (2) companies Have any schools had an experiences with Web application security vulnerability assessment (1) software -- (nstalker, appscan, etc.) (2) companies / consultants who perform such services Post to the list or to me. I'll summarize. H. Morrow Long University Information Security Officer Director - Information Security Office
Attachment:
smime.p7s
Description:
Current thread:
- Experiences with Web application vulnerability assessment (1) software (2) companies Morrow Long (Feb 27)
- <Possible follow-ups>
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Gary Dobbins (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Johnson, Kevin (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Roger Safian (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Hull, Dave (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Randy Marchany (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Hull, Dave (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Halliday,Paul (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Petreski, Samuel (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Alex (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies curtw () siu edu (Feb 27)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Darwin Macatiag (Feb 28)
- Re: Experiences with Web application vulnerability assessment (1) software (2) companies Alex (Feb 28)
(Thread continues...)