Lifedork » Application security http://www.lifedork.net still GeeX? still SuX! Thu, 08 Jul 2010 16:15:55 +0000 http://wordpress.org/?v=2.9.1 en hourly 1 http://www.lifedork.net http://www.lifedork.com/favicon.ico Lifedork openAcunetic – open source java-based web application vulnerability scanner http://www.lifedork.net/openacunetic-open-source-java-based-web-application-vulnerability-scanner.html http://www.lifedork.net/openacunetic-open-source-java-based-web-application-vulnerability-scanner.html#comments Thu, 22 Jan 2009 08:24:55 +0000 admin http://www.lifedork.com/?p=605 If you’ve ever used or heard about Acunetix , the commercial web application vulnerability scanner , you must like this new tool which makes web application security auditing even easier , the tool itself is called openAcunetic. It can be said as a open source version of Acunetix (but of course they don’t look the same , and not from the same developer). OpenAcunetic is an open source java-based web application vulnerability scanner that developed by RedLevel. If you’re curious to try this tool right away to start auditing web application security. Just Download the tool by link given in the end of this post , and you can start scanning your web application from sql injection , xss , etc

Download openAcunetic : http://packetstormsecurity.org/UNIX/scanners/openAcunetix.zip


]]> http://www.lifedork.net/openacunetic-open-source-java-based-web-application-vulnerability-scanner.html/feed 0 Ratproxy – passive web application security assessment tool http://www.lifedork.net/ratproxy-passive-web-application-security-assessment-tool.html http://www.lifedork.net/ratproxy-passive-web-application-security-assessment-tool.html#comments Fri, 02 Jan 2009 19:59:44 +0000 admin http://www.lifedork.com/?p=545 Ratproxy 1.53 is a passive web application security assessment tool which is developed by Michal Z. It works semi-automated , it passively detects broad classes of security problems such as XSS , Script Inclusions , content serving problems , XSRF and XSS defenses.

Here’s the short excerpt about Ratproxy 1.53 from their official project page :

Ratproxy is a semi-automated, largely passive web application security audit tool. It is meant to complement active crawlers and manual proxies more commonly used for this task, and is optimized specifically for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments

To get a better understanding about Ratproxy , you can read their full documentation here . And you can download ratproxy 1.53 right here .

Related articles :
Reblog this post [with Zemanta]
]]> http://www.lifedork.net/ratproxy-passive-web-application-security-assessment-tool.html/feed 0