Penetration Testing mailing list archives
Re: Pen testing web servers
From: infolookup () gmail com
Date: Sat, 20 Dec 2008 00:19:11 +0000
I am not a professional Pentester but I think it all depends on what you are looking for. Ex SQL injection, hidden directories, XSS, once you have that covered I would take a look at OWASP.org among other sites and look at some of there testing guides. Again just my .02 ------Original Message------ From: Kevin P Biggs Sender: listbounce () securityfocus com To: pen-test () securityfocus com Sent: Dec 19, 2008 6:10 PM Subject: Pen testing web servers What does everyone consider the best pen tool for testing web servers? I have tried Nessus. What tool(s) do you recommend? ------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------ Sent from my Verizon Wireless BlackBerry ------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------
Current thread:
- Re: Pen testing web servers, (continued)
- Re: Pen testing web servers Kevin P Biggs (Dec 19)
- Re: Pen testing web servers Adriel T. Desautels (Dec 19)
- RE: Pen testing web servers Erin Carroll (Dec 19)
- Re: Pen testing web servers Adriel T. Desautels (Dec 20)
- Re: Pen testing web servers Kevin P Biggs (Dec 19)
- RE: [Dailydave] Pen testing web servers Brett Moore (Dec 20)
- RE: Pen testing web servers Shenk, Jerry A (Dec 23)