Grendel-Scan is a new(ish) web application scanner that a friend of mine is writing. One of the cool things that I like about Grendel is it’s Cross Site Scripting (XSS) vulnerabilitiy detection.
The way David approached the XSS vulnerability scanning cuts down on the amount of requests being made to the web application as well as [...]
Entries Tagged as 'Web App Hacking'
Grendel-Scan
April 9th, 2009 · 1 Comment
Tags: Web App Hacking
More on Web App Scanners
July 14th, 2008 · 2 Comments
In a previous post I talked a bit about NTOSpider, how it was “o.k.” with what it did, and how I was generally disappointed overall in the effectiveness of web app scanners in the market. As a matter of fact, Caleb Sima (founder and CTO of SPI Dynamics) actually had a couple of good points [...]
Tags: Web App Hacking
Someone else actually likes NTOSpider?
July 7th, 2008 · 4 Comments
NTOSpider – I generally use it as a scanner (amongst others) when I’m looking for web app input validation issues, and I’ve thought it to be pretty decent. By no means is it the best one out there – which I’ll talk about in a sec, but it is a scanner that has [...]
Tags: Web App Hacking