Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: OWASP Top 10 penetration testing software?

From: Michele Orru <antisnatchor () gmail com>
Date: Tue, 28 Feb 2012 21:09:55 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Checkout Arachni.
https://github.com/Zapotek/arachni

Great tool.

Cheers
antisnatchor

webcat wrote:

Hi, for one of my websites, I have been required to use a web application
scanner that tests against the OWASP Top Ten threats. I'm looking for a
scanner that does this that is inexpensive or free.

Possible scanners I've found for this include the OWASP Zed Attach Proxy
Project, Sonar, and w3af, but none of these explicitly tests against the
OWASP Top Ten threats (at least not that I can tell).

Does anyone know of a scanner that does test against the OWASP Top Ten
threats? Thank you!

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJPTTSTAAoJEBgl8Z+oSxe4UGMIAKgx9QuyK6G9+fb+RJdv3R3g
qQKIYBRADfHnqrEgwXRekrcmzY0cAjxYMFbKVlrgaXblqnl7ZcBu2oRaRvxzLPfZ
/0sgMHi6ixSIfMSlqUQv6m6LHJW9/cqS0pfJTJqdVhSo36CyAilwSyUaOqgbT/KY
7glzA+DKw+m9wQz/xPqSuawBIFdOxOXMGQyHvs20vpV5hKLTh2t/s0ir/lcG4MWL
fwnG7uyxT+03KF2q5xItGrhkGt9MrrWOLjuM6hgCquePo3DKsewfQV8b2trdbkhc
8oAJ2bXLlqt7sFCiRgAm6vFZTOaRaqHRcBW5pF7L0wsOliGsss/5yY1DPEpRAc4=
=epyB
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: