[Owasp-delhi] IBM AppSCAN & HP Webinspect comparison

Gautam Pagedar appsec.experts at gmail.com
Sun Feb 28 22:58:53 EST 2010

It great to see the comparison. We are using AppScan for more than 5 years now and I somehow feel that it does not give me full control to do everything.

Its of course a good tool for novice starting AppSec. We also use Cenzic and it give me some extra features and maybe also a way to compare every time I get into a engagement.

FYI, AppScan has a Enterprise version and its a cool tool for a enterprise wise deployment and getting AppSec testing into SDLC.


Thanks for this report. It gives me a good reason to try WebInspect :-)

  ----- Original Message ----- 
  From: Abir Banerjee 
  To: manikgupta19 at sqatester.com 
  Cc: owasp-delhi at lists.owasp.org 
  Sent: Saturday, February 27, 2010 7:24 AM
  Subject: Re: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison

  Hello Manik,

  Webinspect is much better than Appscan since appscan shows up a lot of false positives and the best web vulnerablity canner would be Acunetix WVS + Acusensor. Please the comparision file attached.


  Abeer Banerjee
  +91 9987099708

  From: Manik Gupta <manikgupta19 at sqatester.com>
  To: owasp-delhi at lists.owasp.org
  Sent: Mon, 22 February, 2010 10:22:14 AM
  Subject: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison


  Kindly let me know which tool is better for penetration testing among IBM AppSCAN & HP Webinspect.



  Join SQAtester.com Community  ---> http://www.sqatester.com/testersarea/joinus.htm

  Your Mail works best with the New Yahoo Optimized IE8. Get it NOW!.


  Owasp-delhi mailing list
  Owasp-delhi at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-delhi/attachments/20100228/b9e28fcd/attachment.html 

More information about the Owasp-delhi mailing list