Educause Security Discussion mailing list archives

Re: web application scanning

From: randy marchany <marchany () VT EDU>
Date: Tue, 7 Feb 2012 15:03:20 -0500

A relatively inexpensive product is Acunetix (www.acunetix.com). Their
pricing is very reasonable and affordable for EDUs. We use it in
combination with open source web app scanners.

Randy Marchany
VA Tech IT Security Office & Lab


On Tue, Feb 7, 2012 at 2:44 PM, Michael Sheinberg <msheiny () seas upenn edu>wrote:

Hello,

Does anyone here have any recommendations for tools (preferably
open-source) that will scan web-servers for vulnerable application
frameworks + plug-ins?

Stuff like looking for out-of-date Drupal, Joomla, etc. Obviously I can
find some of these tools with Google on my own, just curious if anyone
has any positive experience with any in particular.

Thanks!
--
-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~
Michael Sheinberg
Network Security Administrator, CETS

School of Engineering and Applied Science
-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~

Current thread:

web application scanning Michael Sheinberg (Feb 07)
- Re: web application scanning Paul Lepkowski (Feb 07)
  - Re: web application scanning Indir Avdagic (Feb 07)
- Re: web application scanning Greg Williams (Feb 07)
- Re: web application scanning randy marchany (Feb 07)
  - Re: web application scanning Chris Green (Feb 08)
- Re: web application scanning Seth Hall (Feb 07)
- Re: web application scanning Seth Hall (Feb 07)
- Re: web application scanning Brian J Smith-Sweeney (Feb 07)
  - Re: web application scanning David Pirolo (Feb 07)