[WEB SECURITY] automated F/OSS web app sec tools

travis+ml-webappsec at subspacefield.org travis+ml-webappsec at subspacefield.org
Fri May 28 05:52:08 EDT 2010

Hey all,

I was wondering, apart from what I might find on the OWASP web page,
what kind of F/OSS (mostly or completely) automated tools exist for
web app security.

For example, I just heard about xHunter at the IEEE S&P W2.0 workshop,
which is designed to automatically detect XSS attacks (post facto -
from log files), and was wondering what other kinds of tools like that

A Weapon of Mass Construction
My emails do not have attachments; it's a digital signature that your mail
program doesn't understand. | http://www.subspacefield.org/~travis/ 
If you are a spammer, please email john at subspacefield.org to get blacklisted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20100528/9d25569a/attachment.bin>

More information about the websecurity mailing list