WebApp Sec mailing list archives
[Tool Release] TA-Mapper BETA: Application Pen-Testing Effort Estimator
From: "Debasis Mohanty" <debasis.mohanty.listmails () gmail com>
Date: Thu, 1 Jan 2009 23:05:49 +0530
Happy New Year To All! Time and Attack Mapper (alternatively known as TA-Mapper) is an effort estimator tool for blackbox security assessment (or Penetration Testing) of applications. This tool provides more accurate estimation when compared to rough estimation. Penetration testers who always has hard time explaining/justifying the efforts charged (or quoted) to their customers can find this tool handy by able to calculate efforts with greater accuracy required for application penetration testing. I wrote this tool back in 2004 to support some of my freelancing assessment. I was intrigued to write this tool when I was asked by one of my Fortune 100 customer to justify efforts quoted against the activities for a penetration testing assignment. It not just helped me win the project but also help me educate the customer in knowing the activities involved at the micro-level. After making few changes in the tool I thought I have kept it private too long and its right time to share it with the world. Get it here: http://www.coffeeandsecurity.com/resources/tools/tamapper.aspx -d ------------------------------------------------------------------------- Sponsored by: Watchfire Methodologies & Tools for Web Application Security Assessment With the rapid rise in the number and types of security threats, web application security assessments should be considered a crucial phase in the development of any web application. What methodology should be followed? What tools can accelerate the assessment process? Download this Whitepaper today! https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F -------------------------------------------------------------------------
Current thread:
- [Tool Release] TA-Mapper BETA: Application Pen-Testing Effort Estimator Debasis Mohanty (Jan 01)