[OWASP-TESTING] ENC: Asp.Net Security Analyser

zeno at cgisecurity.net zeno at cgisecurity.net
Fri Oct 10 15:34:48 EDT 2003


That is one cool tool.

- admin at cgisecurity.com

> 
> Looks interesting...I can't seem to pull the source down..can someone send me the zip ?
> 
> ---- Mads Rasmussen <mads at opencs.com.br> wrote:
> > 
> > Have you seen this?
> > 
> > Regards,
> > 
> > Mads
> > 
> > -----Mensagem original-----
> > De: Windows NTBugtraq Mailing List
> > [mailto:NTBUGTRAQ at LISTSERV.NTBUGTRAQ.COM] Em nome de Dinis Cruz
> > Enviada em: quinta-feira, 9 de outubro de 2003 13:19
> > Para: NTBUGTRAQ at LISTSERV.NTBUGTRAQ.COM
> > Assunto: Asp.Net Security Analyser
> > 
> > Hello, we have just released the first stable version of our new Open
> > Source Project: the Asp.Net Security Analyser (ANSA)
> > 
> > Asp.Net Security Analyser (ANSA) is a Open Source, Windows based, online
> > tool, that tests the server's security for known vulnerabilities and
> > mis-configurations. The tool was initially designed to allow the
> > protection of ISPs that provide shared hosting services. You can
> > download the source code, use it in your servers and distribute it to
> > who ever you feel appropriate.
> > 
> > The project's objective is to create an Open Source tool that allows
> > system administrators (responsible for windows based shared hosting
> > environments) to easily identify and solve existent security problems.
> > 
> > The current version is focused on identifying security vulnerabilities
> > such as: remote command execution, pour website isolation (i.e. the user
> > from website 'A' can see the data from website 'B'), disclosure of
> > sensitive information (such as usernames/passwords, running processes,
> > installed services), ability to do a server based port scan, etc..
> > 
> > Eventually the tool should evolve to a "Asp.Net Security Configuration
> > Tool" where it will also allow the SysAdmins to securely configure their
> > servers
> > 
> > This project is currently hosted in a Workspace in GotDotNet (
> > <http://www.gotdotnet.com/> www.gotdotnet.com) and this is the direct
> > link to the project:
> > 
> > <http://www.gotdotnet.com/Community/Workspaces/Workspace.aspx?id=36ae9a2
> > c-8740-4b52-924e-320edf64fba5>
> > http://www.gotdotnet.com/Community/Workspaces/Workspace.aspx?id=36ae9a2c
> > -8740-4b52-924e-320edf64fba5 (if this link doesn't work please visit
> > this page
> > <http://www.gotdotnet.com/community/workspaces/directory.aspx>
> > http://www.gotdotnet.com/community/workspaces/directory.aspx and search
> > for 'ANSA')
> > 
> > Thanks for your time, and don't hesitate to contact me if you require
> > any further help.
> > 
> > Dinis Cruz
> > .NET Security Consultant
> > DDPlus ( <http://www.ddplus.net/> www.ddplus.net)
> > 
> > 
> > -----
> > Out of Office replies to list messages cause you to be unsubscribed
> > automatically. Either subscribe a Public Folder, or ensure you're rules
> > are
> > set to ensure list messages are filtered prior to your Out of Office
> > reply.
> > Such automatic replies are a bane to posters, and cause us to have fewer
> > researchers post to NTBugtraq.
> > -----
> > 
> > 
> > 
> > -------------------------------------------------------
> > This SF.net email is sponsored by: SF.net Giveback Program.
> > SourceForge.net hosts over 70,000 Open Source Projects.
> > See the people who have HELPED US provide better services:
> > Click here: http://sourceforge.net/supporters.php
> > _______________________________________________
> > owasp-testing mailing list
> > owasp-testing at lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/owasp-testing
> > 
> > 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: SF.net Giveback Program.
> SourceForge.net hosts over 70,000 Open Source Projects.
> See the people who have HELPED US provide better services:
> Click here: http://sourceforge.net/supporters.php
> _______________________________________________
> owasp-testing mailing list
> owasp-testing at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/owasp-testing
> 





More information about the Owasp-testing mailing list