[Owasp-dotnet] [Fwd: SPI Dynamics Wins Secure Enterprise Testers Choice]
Daniel Cuthbert
daniel.cuthbert at owasp.org
Mon Sep 12 17:03:24 EDT 2005
Loads
The reason it works is that it has loads of shiny buttons and the
marketing department claims it to be the best
They only let you test it on their vulnerable web site, but anyone
with a small sense can guess its been designed to "find" all those holes
Easy tip for anyone wanting to totally stuff the automated scanners:
Make Apache/IIS return 200 OK's for EVERY request. This will make it
light up like a christmas tree for vulnerabilities found
On 12 Sep 2005, at 21:44, Dinis Cruz wrote:
> Any comments?
>
> From: SPI Dynamics <news at spidynamics.com>
> Date: 12 September 2005 20:30:48 BDT
> To: dinis at ddplus.net
> Subject: SPI Dynamics Wins Secure Enterprise Testers Choice
> Reply-To: news at spidynamics.com
>
>
>
>
>
>
>
>
>
> Secure Enterprise Magazine chose SPI Dynamics WebInspect 5.5 as the
> Testers Choice product in a recent Web Application vulnerability
> scanner product review. Read the entire Secure Enterprise review
> at: http://www.spidynamics.com/assets/documents/
> SecureEnterprise_WI5.5_review.pdf
>
>
> To test your Web Application, download our complimentary 15-day
> product trial that delivers a comprehensive vulnerability report.
>
>
>
> WebInspect Enterprise Edition 5.5. delivers a complete enterprise
> solution for addressing security throughout the application lifecycle.
> Learn More>>>
>
>
> SPI Dynamics, Inc.
> 115 Perimeter Center Pl. NE.
> Suite 1100
> Atlanta GA 30346
> 678.781.4800
> sales at spidynamics.com
> Toll-Free: 1.866.SPI.2700 (1.866.774.2700) www.spidynamics.com
>
>
> Please Remove Me From This Mailing
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.owasp.org/pipermail/owasp-dotnet/attachments/20050912/f258b2f2/attachment.html
More information about the Owasp-dotnet
mailing list