Professional Documents
Culture Documents
EH Assignment 2
EH Assignment 2
Que: 1
List the tools that are used to scan the vulnerability in web application,
Desktop application and Programs in any other high level language.
Ans:
For web Application Vulnerability:
Grabber
Vega
Zed attack proxy
Wapiti
W3af
WebScarab
Skipfish
Wfuzz
BurpSuite
SQLMap
Codesake Dawn
FindBugs
FindSecBugs
Flawfinder
PMD
SonarQube
File Disclosure.
Cross site Scripting injection
Database injection ,like: SQL injection and XPath injection
Command Execution detection.
XmleXternal Entity injection
Bypass .htaccess configuration
CRLF injection through HTTP Response splitting, session
hijacking
Some of the screenshot of that tool which gives the highlight how
to use it.