Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I am looking into the possibility of using tools in order to help me evaluate my site’s vulnerability. The ones i have liked the most are Nikto2 and SensePost.
Before actually deciding, i thought it would be smart to ask around for opinions: anybody has had any experience with any of these? Does someone knows of any tool which could be better? Looking forward to hearing some opinions!! 🙂
I hear Nessus is pretty good, not sure if they have a free liscence though.
If you have corporate backing, you could spring for a Qualys scanner.
If you are going the free route, Nikto is fine, an nmap scan never hurts either. Just make sure you have the latest software and patches, and know how XSS / Injection attacks work.