May 3rd, 2005, 04:52 PM
"Good" Web Site Security Scanner/Analyzer?
We have been tasked with testing the security of our commerce security websites. We are finding that Wikto is not providing sufficient results and NESSUS is good for the server side vulnerability checking, but is there a good tool to scan internal websites for vulnerabilities/exploits - and also provide information on how to fix them; vis-a-vie NESSUS reporting?
We are trying SiteDigger now and hoping for better reporting. The reason I go on about the reporting is that we need as much detail as possible to report back to the client.
We are also using Nikto for testing as well. The output does not seem user friendly to try and explain or read through.
May 3rd, 2005, 08:10 PM
Don't know if this is what you are looking for but I use Acunetix Web Vulnerability Scanner. It seems to do a good job and found a few holes in my sites.
Sex is like \"Social Security\". You get a little each month, but it\'s not enough to live on.
May 3rd, 2005, 09:17 PM
I think SiteDigger will do the job ... I always say that it is one of the best applications ... I guess.
\"The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards - and even then I have my doubts\".....Spaf
Everytime I learn a new thing, I discover how ignorant I am.- ... Black Cluster
May 4th, 2005, 01:30 PM
May 4th, 2005, 01:38 PM
Hey, I am Dcrab I offer such services for a considerably very cheap price,
May 5th, 2005, 02:58 AM
You'd be better off hiring/contracting individuals to do this for you. Automated tools will only get you so far...and unfortunately that is not far enough.
"When I get a little money I buy books; and if any is left I buy food and clothes." - Erasmus
"There is no programming language, no matter how structured, that will prevent programmers from writing bad programs." - L. Flon
"Mischief my ass, you are an unethical moron." - chsh
Blog of X
May 5th, 2005, 03:52 AM
One more thing i forgot to mention, we are currently offering a special deal if we dont find anything you dont pay