[Owasp-leaders] list of good pen testing tools

psiinon psiinon at gmail.com
Fri Nov 18 05:32:27 EST 2011


Hi Tobias,

For pen testing web apps not too surprisingly I'd recommend the OWASP Zed
Attack Proxy (I'm the project lead).
For some strange reason it didnt make it onto the sectools list that Dinis
mentioned, probably due to the network bias of that site.

Cheers,

Simon


On Fri, Nov 18, 2011 at 10:03 AM, Tobias <tobias.gondrom at owasp.org> wrote:

>  Hi guys,
>
> sorry if this question is maybe not appropriate for this list.
> At the moment I try to compile a list of useful pen testing tools /
> security scanners for a colleague at OWASP China.
>
> If someone of you might have a good recommendations of their favourite
> tools that go beyond the common nmap, Nessus, SAINT, OpenVAS or know a good
> source online, any help/opinion would be highly appreciated.
>
> There are a number of tool lists out there (e.g. I noticed that OWASP
> Phoenix chapter compiled a long list of tools),  unfortunately they don't
> give any qualifying advise on which of the tools are most useful, and which
> are not so useful.
>
> So any advise and recommendations from the pen testing community, about
> their top-3 to top-10 favourite tools would be great insight.
>
> Best regards, Tobias
> (OWASP London)
>
>
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20111118/6f29f51c/attachment.html 


More information about the OWASP-Leaders mailing list