Application security, Exchange, Instant Messaging, Encryption, Database, secure coding, Platform Security, vulnerability management, patching, configuration, PEN testing, Development, Software testing, Automated, Software Testing Tools, Web
My group is considering implementing an application vulnerability scanner to look for security holes in our Web sites. Can you recommend some products? Thanks 
0
0
0
Looking for relevant Security Whitepapers? Visit the SearchSecurity.com Research Library.
petkoa | Apr 21 2006 8:42AM GMT
If you have a linux/unix box (or care to install one) you can as well try Nessus. Unfortunately, its server component is not ported to Windows.
BR,
Petko
MichelleDavidson | Apr 21 2006 9:18AM GMT
Definitely check out SearchAppSecurity.com. We have articles and product reviews — and links to those types of stories on other Web sites. Here are a couple:
Product review: SPI Dynamics WebInspect 5.8
<a href="http://searchappsecurity.techtarget.com/newsItem/0,289139,sid92_gci1173075,00.html" rel="nofollow">http://searchappsecurity.techtarget.com/newsItem/0,289139,sid92_gci1173075,00.html</a>
Cenzic Hailstorm case study: Boston College takes preemptive approach to Web application attacks
<a href="http://searchappsecurity.techtarget.com/originalContent/0,289142,sid92_gci1183112,00.html" rel="nofollow">http://searchappsecurity.techtarget.com/originalContent/0,289142,sid92_gci1183112,00.html</a>
– Michelle Davidson, editor, SearchAppSecurity.com
ItDefPat1 | Apr 21 2006 11:09AM GMT
Windows web sec article on
ALSO ON SEARCHWINDOWSSECURITY.COM
STEP-BY-STEP GUIDE: Securing Web servers
<a href="http://searchwindowssecurity.techtarget.com/generic/0,295582,sid45_gci1179797,00.html?track=NL-480&ad=549960" rel="nofollow">http://searchwindowssecurity.techtarget.com/generic/0,295582,sid45_gci1179797,00.html?track=NL-480&ad=549960</a>
A couple of good suggestions, but some I am not familiar with.
joseph34 | Apr 24 2006 9:13AM GMT
I would look at SecureWorks…They have a great deal of application experience.
