Q

Affordable automated testing tools for securing websites

Application security expert recommends best free tools available for automated testing in software applications.

Which automated tool can be used for securing a website from hacking inexpensively and easily? Are there any free tools, or hints you could offer?

There are plenty of "free" Web vulnerability scanners including Wikto and Paros. Even the commercial vendors Acunetix...

and N-Stalker have free versions of their scanner tools. I have found that you definitely get what you pay for but these free tools can get you started down the right path. Just don't overestimate the value of scanners and underestimate the value of manual testing. The latter will uncover the *other* 40-50% of Web security flaws that the scanners can't find.

I would also like to make mention of the Web 2.0 security testing tutorial available on this site.

Here is a link: Web 2.0 application security troubleshooting, testing tutorial included in this tutorial are links to several free tools, explanations on how to use them as well as troubleshooting advice and videos.

This was last published in October 2009

Dig Deeper on Software Security Test Best Practices

PRO+

Content

Find more PRO+ content and other member only offers, here.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchSOA

TheServerSide

SearchCloudApplications

SearchAWS

SearchBusinessAnalytics

SearchFinancialApplications

SearchHealthIT

Close