Solved

point and click GUI web scanner

Posted on 2011-09-28
8
399 Views
Last Modified: 2012-05-12
Does there exist a free web vulnerability scanner with a GUI and pretty much point and click to check theres nothing glaringly wrong with an app. I appreciate more complex vulns probably require a code review from a development specialist, but id imagine in 2011 theres a tool to identify glaring problems via a point and click type audit
0
Comment
Question by:pma111
8 Comments
 
LVL 50

Assisted Solution

by:jcimarron
jcimarron earned 50 total points
Comment Utility
pma111--
"vulnerability" ??
If it works, do not fix it.
Do you have any apps you suspect?
0
 
LVL 3

Author Comment

by:pma111
Comment Utility
Yes vulnerability - you know, SQL injection, direct object reference, XSS (cross site scripting) etc.

I wasnt on about performance or app logic bugs, I was on about security bugs.
0
 
LVL 61

Accepted Solution

by:
btan earned 400 total points
Comment Utility
Can check out this list which include gui friendliness
Indicator on some http://sectools.org/web-scanners.html

but should not only rely on scanner as static code is another critical process as vulnerability may not reveal in real time and surface after certain inputs or sequences is feed to the web app.
0
 
LVL 78

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 50 total points
Comment Utility
do you want to check your website for vulnerabilities? or your computer for vulnerabilities.. for the website you will need access to the web server
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 3

Author Comment

by:pma111
Comment Utility
website/app
0
 
LVL 61

Expert Comment

by:btan
Comment Utility
Another is web cruiser http://sec4app.com/node/47
0
 
LVL 3

Author Comment

by:pma111
Comment Utility
Thanks breadtan is that a freebie ^
0
 
LVL 61

Expert Comment

by:btan
Comment Utility
Free trial though for 30 days. Heard netsparker is comparable and free if using community version but the latter may differ though did not drill further.

 http://www.mavitunasecurity.com/netsparker/
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
By this time the large percentage of day-to-day transactions have shifted to mobile banking; here are some overriding areas QAs must investigate while testing mobile banking apps.  
This tutorial walks through the best practices in adding a local business to Google Maps including how to properly search for duplicates, marker placement, and inputing business details. Login to your Google Account, then search for "Google Mapmaker…
The viewer will learn how to dynamically set the form action using jQuery.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now