Top five Web security assessment tools

By Anonymous -
Top five Web security assessment tools
Scanning websites is an entirely different ballgame from network scans. In the case of websites, the scope of the scan ranges from Layer 2 to 7, considering the intrusiveness of the latest vulnerabilities. The correct approach for scanning websites starts from Web-level access, right up to scanning all backend components such as databases. While most Web security scanners are automated, there could be a need for manual scripting, based on the situation.

Nikto

Let’s start with this tool because of its feature set. This open source tool is widely used to scan websites, mainly because it supports HTTP and HTTPS, and also provides findings in an interactive fashion. Nikto can crawl a website just the way a human would, and that too in the least amount of time. It uses a technique called mutation, whereby it creates combinations of various HTTP tests together to form an attack, based on the Web server configuration and the hosted code.
Thus, it finds critical loopholes such as file upload misconfiguration, improper cookie handling, cross-scripting errors, etc. Nikto dumps all findings in a verbose mode, which helps in knowing more about the Web vulnerabilities, in detail. However, it can also result in too many things getting notified, some of which may be false alarms. Hence, care should be taken while interpreting Nikto logs.
Download

Samurai framework

Once a baseline check is performed by Nikto, the next step is to take the “deep-dive” approach. Samurai is a framework — a bunch of powerful utilities, each one targeted for a specific set of vulnerabilities.
It comes as a Linux distribution, purely focusing on penetration-testing tools such as WebScarab for HTTP mapping, W3AF plugins for application-based attacks, and it also has tools to test browser-based exploits. It is amazing to note that the most recent version can find vulnerabilities that are usually not detected even by a few commercial software products.
Download

Safe3 scanner

While the first two tools are good for static websites, for portals needing user ID and password, we need something that can deal with HTTP sessions and cookies. Safe3 scanner is a fantastic open source project, which has gained momentum and fame because it can handle almost all types of authentication, including NTLM.
It contains a Web crawler (a spider like that of search engines) capable of ignoring duplicate page scans and yet detect client-side JavaScript vulnerabilities. Safe3 scans also detect the possibility of the latest AJAX-based attacks and even report vulnerable script libraries. It comes with a user-friendly GUI and is capable of creating nice management reports.
Download

Websecurify

Though very similar to Samurai, Websecurify also brings application-level assessment into play. In case of a large Web farm where code is maintained by a team of developers, following standards can sometimes yield insecure code like passwords mentioned in code, physical file paths in libraries, etc. Websecurify can traverse code and find such loopholes swiftly.
A nice feature is that it allows you to create screenshots of the problem areas automatically, which helps in preparing audit reports. It is one of the very few platform-independent tools and also supports mobile coding, which is helping it get more popular in the cyber-security assessment world.
Download

SQLmap

Unless I mention a tool to detect SQL-injection attacks, this article would not be complete. Though this is a very old “first-generation” type of attack, many public websites still fail to fix it. SQLmap is capable of not just exploiting SQL-injection faults, but can also take over the database server. Since it focuses on a specific task, it works at great speed to fingerprint databases, find out the underlying file system and OS, and eventually fetch data from the server. It supports almost all well-known database engines, and can also perform password-guessing attacks. This tool can be combined with the other four tools mentioned above to scan a website aggressively.
A vulnerability assessment tool should include network scanning as well as website vulnerability exploitation. Open source software is prone to attacks too; hence, network administrators must know about the reputed scanners and use them in their daily tasks to make their infrastructure secure and stable.
Download


Regards,
Hardeep Singh aka cyb3r.gladiat0r

Comments

Post a Comment

Popular posts from this blog

How to hack your xbox 360 completely

By Anonymous -
Image
So you want to hack your 360. Have no idea where to start? This thread should give you a general idea on what you can do with your 360. Lets get started. First of all you'll need to determine the age of your console. This will give you a general idea of what hack you can apply. On the back of the 360 there is a sticker near the AV port (Phat*&Slim*) On that you'll find the MFR date as well as the Console Serial and Product ID. Determining the age of the 360 ​ ​ You'll need to write down your MFR date. This will roughly tell you what board you have in your 360. Xenon: 2005 - 2007 203w power supply, can be JTAGged and RGH'd (14699 only) & R-JTAGged. Zephyr: 2007 - 2008 203w power supply, can be JTAGged and RGH'd (Hard to achieve) & R-JTAGged. Opus: Only from RRoD Repairs from MS (rare revisions) 203/175w power supply, can be JTAGged and RGH'd & R-JTAGged. Falcon: 2007 - 2009 175w power supply, can be JTAGged and
Read more

Autonomous mobile additive manufacturing robot runs circles around traditional 3D printers

By Anonymous -
Image
3D printing is revolutionizing the way objects are created, from plastic toys to ceramic dental crowns. But the seemingly boundless possibilities of 3D printing technology have one major limitation—the printers themselves, which are large, bulky, and stationary. Robert Flitsch didn’t like being constrained by the boxy shape of the 3D printer he used while he was a student at the Harvard John A. Paulson School of Engineering and Applied Sciences. So this mechanical engineering concentrator developed a wheeled additive manufacturing machine that can literally run (or drive) circles around a traditional 3D printer. He recently launched a startup named Addibots (a  portmanteau  of additive manufacturing and robots), to develop and market his mobile 3D printing robots. “By making the additive manufacturing components completely mobile, you break free of all the workspace limitations of 3D printing,” Flitsch said. “But Addibots also greatly opens the field to many new application space
Read more

The power of Bluetooth 4.0

By -
Image
Bluetooth, once trumpeted as the ultimate convenience, quickly proved a headache with plenty of pairing problems and inexplicable connection snafus. Bluetooth 4.0, the newest version of the technology, is about to change all that. The bad Bluetooth rep I personally use Bluetooth daily, and love it. My trusty   LG BHS-700s   works like a charm. For others, however, living with this technology can be frustrating. Often users are asked to enter annoying passwords before linking devices, and sudden reception drops or other software glitches make Bluetooth feel more painful than fun. Honestly I believe the bad old days of Bluetooth are behind us, especially with Bluetooth 4.0, AKA   Bluetooth Smart Ready , on the edge of mass adoption. Already available in the   Motorola Droid Razr   and   Droid Razr Maxx   smartphones plus Apple's   iPhone 4S , Bluetooth 4.0 is expected to hit more handsets and all manner of accessories this year. High-end handsets such as the Motorola Droid Razr
Read more