Appsec toolkits

[Craig_Sullivan () Waitrose co uk]

Well,

I've now started assembling my own toolkit for application assessment.

When I have finished compiling, evaluating and using the tools I select,
I'll publish the full list.....

What tools do you use for web app sec assessment and can you share your
toolkit with the list?


Regards,

Craig.


Categories:
Scanners (incl CGI and general scanners)
Scarfers (programs for making offline copies of sites)
Proxy servers (for viewing and tracing HTTP, state management, adjusting
parameters)
Sniffers (packet decode applications)
Platform specific (platform specific checks that I'm going to run)
Misc (miscellaneous tools).





*********************************************************************

Notice:  This email is confidential and may contain
copyright material of the John Lewis Partnership.
If you are not the intended recipient, please
notify us immediately and delete all copies of this
message.  (Please note that it is your responsibility
to scan this message for viruses).


*********************************************************************

John Lewis plc                  Registered in England 233462
Registered office               171 Victoria Street London SW1E 5NN
      
Websites: http://www.johnlewis.com and http://www.waitrose.com