Esha, good to see your interest in Web security and thanks to others for sharing the information....
In addition to the metasploit video tutorial links given earlier... these are few introductory web application / server security scanner session links (both text and video based tutorials) on Appscan, Acunetix, AMP-Webinspect, Core-Impact for now.... Please make sure that you go thru all the related videos only. There would be a button on the top or right of the video displayed. Go thru related security videos' only**** Introductory video of AppScan, a corporate standard these days... http://www.youtube.com/watch?v=hZLGgyKoW8w&feature=related Introductory text material on AppScan http://agile.csc.ncsu.edu/SEMaterials/tutorials/appscan/ Introductory video material on Acunetix http://www.youtube.com/watch?v=uM6X42rXRoE Introductory text material on Acunetix http://www.acunetix.com/websitesecurity/index.htm Introductory video material on AMP http://www.youtube.com/watch?v=WvD7tgwYjnA&feature=related Introductory text material on Webinspect https://download.spidynamics.com/webinspect/default.htm http://www.daretohack.com/files/WebInspectTutorial-Detailed.pdf Introductory text material on Core-Impact: http://www.coresecurity.com/content/core-impact-tutorial Introductory video material on Core-Impact http://www.youtube.com/watch?v=uD9xJWyDIJU Let us know if you have any queries in understanding these... all these infact show you how to use the tools. But after these learnings, you have to concentrate on types of vulnerabilities and its exploitation or prevention which we offcourse discuss regurlaly... keep watching and clarifying yours doubts in our discussions / posts. Thanks! Regards Sandeep Thakur On Fri, Jun 4, 2010 at 10:56 AM, BRIAN RITCHIE <[email protected]>wrote: > Another alternative will be the Samurai WTF - http://*samurai*. > inguardians.com > > > On Sat, Jun 5, 2010 at 1:02 AM, N41K <[email protected]> wrote: > >> If you want to perform Sec. Testing manuall then OWASP material will >> guide you. >> Else, for automatic testing use Accunetix / AppScan / etc... like >> tools. >> >> Source: www.owasp.org >> >> Regards, >> 0xN41K >> >> On Jun 4, 9:24 pm, Esha Patil <[email protected]> wrote: >> > Hello All, >> > >> > I am looking for information on how to perform Security testing for a >> > web-based product. >> > Please share any relevant resources/information. >> > >> > Thanks in advance. >> > >> > Regards, >> > Esha >> >> -- >> You received this message because you are subscribed to the Google Groups >> "nforceit" group. >> To post to this group, send an email to [email protected]. >> To unsubscribe from this group, send email to >> [email protected]<nforceit%[email protected]> >> . >> For more options, visit this group at >> http://groups.google.com/group/nforceit?hl=en-GB. >> >> > -- > You received this message because you are subscribed to the Google Groups > "nforceit" group. > To post to this group, send an email to [email protected]. > To unsubscribe from this group, send email to > [email protected]<nforceit%[email protected]> > . > For more options, visit this group at > http://groups.google.com/group/nforceit?hl=en-GB. > -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
