Link to home
Start Free TrialLog in
Avatar of sunhux
sunhux

asked on

Free external public Internet Pen test website

I have a public Internet portal but have not purchased a security Penetration
test tool or VA tool yet.

Is there any free public Internet website that I can run to direct towards my
portal to get an initial Pen test results for my hardening in advanced?

Ideally one that can VA Pen test not only for Http (ie Tcp 80) but for vulnerable
SSL as well & for various injections (SQL etc)
Avatar of sunhux
sunhux

ASKER

https://pentest-tools.com/reconnaissance/google-hacking#
Is the above a reliable (ie it's not a malicious site) free pen test?

Does Nessus still offer free online scan (to a website) ?

Does metaspoilt & wireshark offer online scan too ?

http://www.metasploit.com/
http://www.wireshark.org/
SOLUTION
Avatar of Rich Rumble
Rich Rumble
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
What noboby has bothered to add is the fact that you get what you pay for.  The "free" tools are about as useful as two left shoes.Your best bet is with one of the EE experts.  After you spend many wasted hours playing with the free tools, I guarantee you will come to the same conclusion.
Avatar of sunhux

ASKER

Thanks, but I don't have the budget as the actual security scanning team
is in progress of procuring a licence (which I heard may take 5-6 weeks).

Just found that Qualys don't accept IP address
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of sunhux

ASKER

http://www.computerworld.com/s/article/9087439/Five_free_pen_testing_tools

I've seen that link earlier;  most of the tools there like Nmap & Wireshark
are not suitable for Pen test like what Richrumble said above
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial