From: WhiteHat Security, Inc. Date: 02.17.2001 Tool Annoucement: WhiteHat Arsenal 1.02 Beta by WhiteHat Security, Inc. Free downloads available from: http://community.whitehatsec.com/ WHArsenal is designed to be the next generation of professional web security audit software. Architected from the ground up to be a generic web application security productivity tool, WHArsenal gives security professionals and web developer's access to the tools they need to make the job securing web applications faster and easier. WHArsenal was first released during BlackHat New Orleans 2002 last week and met with excellent review. The current version (1.02 Beta), contains several bug fixes as well as a Linux version. WHArsenal possesses a powerful suite of GUI-Browser based web security tools. These endowments make WHArsenal capable of completing painstaking web security pen-test work considerably faster and more effectively than any of the currently available tools. Imagine employing WHArsenal to quickly customize and execute just about any web security attack possible and having those penetration attempts logged in XML format for later reporting or analysis. Many experienced web security professionals tend to agree that even the best current web security scanners, which scan only for known vulnerabilities, achieve only very limited success or simply do not work at all. Furthermore, these types of tools often result in an enormous overflow of false positives. WhiteHat understands these frustrating shortcomings and is poised to revolutionize the manner in which web applications are penetration tested. -------------------------------------------------------- WebAppSec Community http://community.whitehatsec.com/ WhiteHat is in the process of creating a new web application security community. A place for people to talk web app sec stuff , read related news, and have access to up-to-date information. Currently there really isn't much in the way of a community site dedicated to web app sec, so this will be a good start for things to come. WhiteHat Security is asking all those interested to submit news and other related information (please be specific to web app sec). Also if you know any good web app sec white paper's and/or PPT material, post those submissions as well. -------------------------------------------------------- BlackHat New Orleans 2002' (http://www.blackhat.com) Jeremiah Grossman presented a discuss at Black Hat covering web application security. Discussion Overview: The discussion included the theory surrounding some of the more dangerous web application attacks known, how to test for them quickly and determine possible countermeasures. Insecure and unprotected web applications are the fastest, easiest, and arguably the most utilized route to compromise networks and exploit users. Download: http://community.whitehatsec.com/ppt/BlackHat_NewOrleans2002.ppt
This archive was generated by hypermail 2b30 : Mon Feb 18 2002 - 08:47:10 PST