PHP, Security, Tools, Web Apps

Web Application Security Scanner

Web security is possibly today’s most overlooked aspect of securing the enterprise and should be a priority in any organization.

Recent research shows that 75% of internet attacks are done at web application level.

Web application security scanners ensure website security by automatically checking for SQL injection, Cross site scripting and other vulnerabilities.

There are a few good security scanners that you can use to test the security of your site, and Scavenger is one of them.

Tell me more about Scavenger…

Scavenger is an open source real-time vulnerability management tool. It helps you respond to vulnerability findings, track vulnerability findings, review accepted or false-positive answered vulnerabilities, and not ‘nag’ you with old vulnerabilities.

Scavenger parses the results from a Nessus scan and stores them in a MySQL database. From that point, a user can login to a web interface and answer a vulnerability as ‘addressed’, ‘accept’, or ‘false-positive’. If an administrator answers accept or false-positive, Scavenger will not insert a new vulnerability again. However, if a user marks a vulnerability as ‘addressed’ and it comes up again in a scan, it will insert a new vulnerability into the database.

Visit the Website

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s