计算机安全超级工具(二十)-应用程序干扰

Spike

http://www.immunityinc.com/

When you need to analyze a new network protocol for buffer overflows or similar weaknesses, the SPIKE is the tool of choice for professionals. While it requires a strong knowledge of C to use, it produces results second to none in the field. SPIKE is available for the Linux platform only.

SPIKE proXy

SPIKE proXy is part of the SPIKE Application Testing Suite,
It functions as an HTTP and HTTPS proxy, and allows the web developer
or web application auditor low level access to the entire web application
interface, while also providing a bevy of automated tools and techniques
for discovering common problems. These automated tools include:

 - Automated SQL Injection Detection
 - Web Site Crawling (guaranteed not to crawl sites other than
   the one being tested)
 - Login form brute forcing
 - Automated overflow detection
 - Automated directory traversal detection

In addition to automated analysis, SPIKE proXy allows the user to
analyse the internals of the web application by viewing and changing
all variables, cookies, headers, or other parts of the request and
resubmit them. Also, a single installation can be shared by multiple users.

 

 

WebProxy

wwww.atstake.com

http://www.symantec.com/business/index.jsp

 

WebInspect

http://hp-webinspect.software.informer.com/

 

HP WebInspect software is web application security assessment software designed to thoroughly analyze today's complex web applications. It delivers fast scanning capabilities, broad assessment coverage and accurate web application scanning results.

 

 

  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值