Solved

point and click GUI web scanner

Posted on 2011-09-28
8
408 Views
Last Modified: 2012-05-12
Does there exist a free web vulnerability scanner with a GUI and pretty much point and click to check theres nothing glaringly wrong with an app. I appreciate more complex vulns probably require a code review from a development specialist, but id imagine in 2011 theres a tool to identify glaring problems via a point and click type audit
0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 50

Assisted Solution

by:jcimarron
jcimarron earned 50 total points
ID: 36720565
pma111--
"vulnerability" ??
If it works, do not fix it.
Do you have any apps you suspect?
0
 
LVL 3

Author Comment

by:pma111
ID: 36814319
Yes vulnerability - you know, SQL injection, direct object reference, XSS (cross site scripting) etc.

I wasnt on about performance or app logic bugs, I was on about security bugs.
0
 
LVL 63

Accepted Solution

by:
btan earned 400 total points
ID: 36815509
Can check out this list which include gui friendliness
Indicator on some http://sectools.org/web-scanners.html

but should not only rely on scanner as static code is another critical process as vulnerability may not reveal in real time and surface after certain inputs or sequences is feed to the web app.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 81

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 50 total points
ID: 36817460
do you want to check your website for vulnerabilities? or your computer for vulnerabilities.. for the website you will need access to the web server
0
 
LVL 3

Author Comment

by:pma111
ID: 36890504
website/app
0
 
LVL 63

Expert Comment

by:btan
ID: 36892760
Another is web cruiser http://sec4app.com/node/47
0
 
LVL 3

Author Comment

by:pma111
ID: 36915757
Thanks breadtan is that a freebie ^
0
 
LVL 63

Expert Comment

by:btan
ID: 36917726
Free trial though for 30 days. Heard netsparker is comparable and free if using community version but the latter may differ though did not drill further.

 http://www.mavitunasecurity.com/netsparker/
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
CTAs encourage people to do something specific to show interest in your company, product or service. Keep reading to learn why CTAs should always be thought of as extremely important, albeit small, sections of websites.
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.
How to create a custom search shortcut to site-search Experts Exchange using Google in the Firefox browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch your Bookmark Menu: Press 'Ctrl +…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question