Home > IT Answers > Development > Looking for application vulnerability scanner
Coder627
0 pts.
0
Q:
Looking for application vulnerability scanner
Software testing, Automated, Application security, Encryption, Database, Secure Coding, Platform Security, vulnerability management, patching, configuration, PEN testing, Software testing tools, Development, Web, Instant Messaging, Exchange
My group is considering implementing an application vulnerability scanner to look for security holes in our Web sites. Can you recommend some products? Thanks
ASKED: Apr 20 2006  2:59 PM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
0
0
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • AddThis Social Bookmark Button
Application Security; Watchfire; Spidynamics are a few. See also searchappsecurity.com!
Last Answered: Apr 20 2006  3:54 PM GMT by ITDefensePatrol   0 pts.
  •   
0
0
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

petkoa   985 pts.  |   Apr 21 2006  8:42AM GMT

If you have a linux/unix box (or care to install one) you can as well try Nessus. Unfortunately, its server component is not ported to Windows.

BR,

Petko

 

MichelleDavidson   110 pts.  |   Apr 21 2006  9:18AM GMT

Definitely check out <a href="http://SearchAppSecurity.com" title="http://SearchAppSecurity. " target="_blank">SearchAppSecurity.com</a>. We have articles and product reviews — and links to those types of stories on other Web sites. Here are a couple:

Product review: SPI Dynamics WebInspect 5.8
 <a href="http://searchappsecurity.techtarget.com/newsItem/0,289139,sid92_gci1173075,00.html" title="http://searchappsecurity.techtarget.com/newsItem/0,289139,sid92_gci1173075,00.html" target="_blank">http://searchappsecurity.techtarget.com/…</a>

Cenzic Hailstorm case study: Boston College takes preemptive approach to Web application attacks
 <a href="http://searchappsecurity.techtarget.com/originalContent/0,289142,sid92_gci1183112,00.html" title="http://searchappsecurity.techtarget.com/originalContent/0,289142,sid92_gci1183112,00.html" target="_blank">http://searchappsecurity.techtarget.com/…</a>

– Michelle Davidson, editor, <a href="http://SearchAppSecurity.com" title="http://SearchAppSecurity. " target="_blank">SearchAppSecurity.com</a>

 

ItDefPat1   0 pts.  |   Apr 21 2006  11:09AM GMT

Windows web sec article on
ALSO ON <a href="http://SEARCHWINDOWSSECURITY.COM" title="http://SEARCHWINDOWSSECURITY. " target="_blank">SEARCHWINDOWSSECURITY.COM</a>
STEP-BY-STEP GUIDE: Securing Web servers
 <a href="http://searchwindowssecurity.techtarget.com/generic/0,295582,sid45_gci1179797,00.html?track=NL-480&ad=549960" title="http://searchwindowssecurity.techtarget.com/generic/0,295582,sid45_gci1179797,00.html?track=NL-480&ad=549960" target="_blank">http://searchwindowssecurity.techtarget….</a>

A couple of good suggestions, but some I am not familiar with.

 

joseph34   0 pts.  |   Apr 24 2006  9:13AM GMT

I would look at SecureWorks…They have a great deal of application experience.

 

Coder627   0 pts.  |   Apr 25 2006  1:48PM GMT

Thank you for all the suggestions. They’ve been helpful.

 

Rahul Shrivastava   330 pts.  |   Jun 17 2009  5:53PM GMT

You can use Appscan, Wikto and Appdetective (for databse of web applications)

 
0