Tests sécurité
Get flash to fully experience Pearltrees
As the Web grows increasingly social in nature, inversely, it becomes less secure.
Web application security: Testing for vulnerabilities
GRAUDIT Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep. It's comparable to other static analysis applications like RATS, SWAAT and flaw-finder while keeping the technical requirements to a minimum and being very flexible. Graudit is available from github, you can check the github project page or check it out directly using git from git://github.com/wireghoul/graudit.git
Graudit - Just Another Hacker
Web Application Exploits and Defenses
This codelab shows how web application vulnerabilities can be exploited and how to defend against these attacks. The best way to learn things is by doing, so you'll get a chance to do some real penetration testing, actually exploiting a real application. Specifically, you'll learn the following:
The Samurai Web Testing Framework is a live linux environment that has been pre-configured to function as a web pen-testing environment.
Samurai Web Testing Framework
Today, most of the victims of security vandals are not big organizations - which have a dedicated IT security budget - but the millions of small websites belonging to small to mid-sized companies that have no security budget. Kyplex revolutionizes web security by offering an online security scanning service that runs from the cloud. What are the benefits to your organization? A complete, low-cost solution . No need to purchase expensive security appliances. The most comprehensive testing suite in the industry.
ZeroDayScan Web Security Scanner | Zero Day Bugs Detection| Scan
w3af - Web Application Attack and Audit Framework
w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. To read our short and long term objectives, please click over the Project Objectives item in the main menu.
CodeScan
CodeScan is an automated Static Source Code Analysis tool developed by the team at CodeScan Labs. It is used to detect vulnerabilities in PHP, ASP and ASP.NET web applications. Its advanced vulnerability detection engine is able to detect a wide range of insecure or vulnerable code – including SQL Injection, Cross Site Scripting (XSS), File Access, Weak Encryption … and Much More!OpenVAS - Open Vulnerability Assessment System Community Site
OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. The powerful and comprehensive OpenVAS solution is available as Free Software and maintained on a daily basis. This is because of dedicated contributors and sponsors.
The QualysGuard Security and Compliance Suite eliminates network auditing and compliance inefficiencies by leveraging your organization's core IT security information. In one consolidated suite, groups with different responsibilities can utilize similar information for their specific needs.
