- Acunetix WVS checks web applications for SQL injections, cross-site scripting, etc.
- It includes advanced penetration testing tools, such as the HTTP Editor and the HTTP Fuzzer.
- Port scans a web server and runs security checks against network services.
- Tests web forms and password-protected areas.
- It includes an automatic client script analyzer allowing for security testing of Ajax and Web 2.0 apps.
- Watcher is a plugin for the Fiddler HTTP proxy that passively audits a web application to find security bugs and compliance issues automatically.
- Netsparker performs automated comprehensive web application scanning for vulnerabilities such as SQL injection, cross-site scripting, remote code injection, etc.
- It delivers detection, confirmation, and exploitation of vulnerabilities in a single integrated environment.
- N-Stalker Web Application Security Scanner is an effective suite of web security assessment checks to enhance the overall security of web applications against a wide range of vulnerabilities and sophisticated hacker attacks.
- It contains all web security assessment checks such as:
- Code injection
- Cross-Site scripting
- Parameter tampering
- Web server vulnerabilities.
- VampireScan allows users to test their own Cloud and Web applications for basic attacks and receive actionable results all within their own Web portal.
Web Application Firewall: dotDefender (?)
- dotDefender is a software based Web Application Firewall.
- It complements the network firewall, IPS and other network-based Internet security products.
- It inspects the HTTP/HTTPS traffic for suspicious behavior.
- It detects and blocks SQL injection attacks.
Web Application Firewall: ServerDefender VP (?)
- ServerDefender VP Web application firewall is designed to provide security against web attacks.