Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Required Help on Automated Tools

From: Taufiq Ali <taufiq.ali () niiconsulting com>
Date: Thu, 16 Oct 2008 11:39:18 +0530
Hey,
Try webscrab. Its a advance proxy & loads of features that will serve your purpose. However you will have to feed the cheat sheets & write in some scripts to check for SQL,XSS etc. However if you dont mind buying a software then Appscan from Watchfire & Acunextix are pretty much what you are looking for. 

Taufiq

-------- Original Message --------
Subject: Re: Required Help on Automated Tools
From: nnp <version5 () gmail com>
To: Vin Oxious <vinoxious () gmail com>
CC: pen-test () securityfocus com
Date: 10/16/2008 12:43 AM


http://grendel-scan.com/

That tool (released at Defcon this year) is quite nice.

On Tue, Oct 14, 2008 at 7:32 PM, Vin Oxious <vinoxious () gmail com> wrote:

Hello Everyone,

                              Greetings !! ..Can you please list me
some tools that would allow automated testing of the below ...  (
while I have already got a few tools .. just wanted to know if there
are some good ones ) ..

SQL Injection -

XSS -

Improper Session Management -

URL Access -

Direct Object Reference -


regards,
Noxious

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------









------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: