[WEB SECURITY] Security Audit Software

Peter Wood peterw at firstbase.co.uk
Wed Jun 22 17:05:07 EDT 2005


Hi Dain

We've been using WebInspect since the first version and believe it to 
be amongst the best web app audit tools. There's no substitute for 
manual testing however, and we verify all its findings manually.

best regards
Pete

At 13:35 22/06/2005 -0700, dpw wrote:
 >Howdy everyone,
 >
 >I need to research and hopefully purchase some software to help us evaluate
 >and test the web apps we develop. I realize that the readers of this list
 >are immeasurably more qualified to identify the strengths / weaknesses of
 >these kinds of software than I am, and hope someone out there can give me
 >some useful insight.
 >
 >SPI Dynamics is so far the only software on my radar for this purpose, but
 >does anyone else have recommendations for security auditing software they
 >trust? Alternatively - does anyone own / use SPI Dynamics' software, and do
 >you feel that it's worth a purchase?
 >
 >Thanks in advance,
 >Dain White
 >Senior Developer - Webmaster
 >First Step Internet, L.L.C.
 >www.fsr.com | www.fsr.net

Peter Wood FBCS CITP MIEEE MIMIS CISSP
Chief of Operations
First Base Technologies
+44 (0)1273 454525
www.fbtechies.co.uk
www.white-hats.co.uk


---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/



More information about the websecurity mailing list