WebApp Sec mailing list archives

RE: Vulnerability solution

From: "Ofer Shezaf" <ofer () shezaf com>
Date: Thu, 15 Nov 2012 22:48:21 +0200

Most of the suggestion made are network scanners and would do poorly for web
application scanning (potentially with exception of w3af) and I suspect also
not database scanning. 

You may want to take a look at Shay Chen's comparison of web application
scanners here:
http://sectooladdict.blogspot.co.il/2012/07/2012-web-application-scanner-ben
chmark.html

~ Ofer

Ofer Shezaf
[+972-54-4431119; ofer () shezaf com, www.shezaf.com]

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Yiannis Koukouras
Sent: Wednesday, November 14, 2012 8:34 PM
To: mdaa.uae () gmail com
Cc: webappsec () securityfocus com; pen-test () securityfocus com
Subject: Re: Vulnerability solution

Hi Mohamed,

The best solution for an all around vulnerability scanner IMHO is Nessus
(http://www.tenable.com/).

Cheers,
Ioannis (Yiannis) Koukouras
CISSP, CISA, CISM, OSCP
MSc in Computer Systems Security
BEng in Electronic Engineering
http://www.linkedin.com/in/ikoukouras

On Wed, Nov 14, 2012 at 8:53 AM, <mdaa.uae () gmail com> wrote:


Dear All

Is there anyone can refer me to vulnerability solution tool that can scan

the system which consists of applications,database and web.the solution
should provide detailed information regarding all the layers in the
enterprise systems.


Thank you

Mohamed





This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------




This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------




This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

Current thread:

Vulnerability solution mdaa . uae (Nov 13)
- RE: Vulnerability solution Ziots, Edward (Nov 14)
- Re: Vulnerability solution Don P (Nov 14)
- Re: Vulnerability solution Mustafa Qasim (Nov 14)
- Re: Vulnerability solution Yiannis Koukouras (Nov 14)
  - RE: Vulnerability solution Ofer Shezaf (Nov 15)
- RE: Vulnerability solution Todor Tuparov (Nov 16)
  - Re: Vulnerability solution h4ck (Nov 16)
    - RE: Vulnerability solution Gail McGowan (Nov 17)
    - RE: Vulnerability solution John Mensel (Nov 17)
  - Re: Vulnerability solution HomeLandSecurity (Nov 16)
- Re: Vulnerability solution Guillermo Caminer (Nov 17)
  - RE: Vulnerability solution Ofer Shezaf (Nov 18)
- RE: Vulnerability solution Salem Baras (Nov 17)
- Message not available
  - Re: Vulnerability solution Ricardo David Carrillo Sanchez (Nov 17)
- Re: Vulnerability solution Marcin R (Nov 17)

(Thread continues...)