Esha, Good to here, you are interested in Application security testing. Please follow the OWASP guildelines v.3 and owasp top 10 vulnerabilities.That will give u more information. if you have any queries, please post.
All the Best Esha *InfosecWorld* On Sat, Jun 5, 2010 at 12:40 PM, <[email protected]> wrote: > Thank you all for sharing so much of infomation. > > -- Esha > > > On Jun 4, 2010, at 12:31 PM, Sandeep Thakur <[email protected]> wrote: > > Esha, good to see your interest in Web security and thanks to others for > sharing the information.... > > In addition to the metasploit video tutorial links given earlier... these > are few introductory web application / server security scanner session links > (both text and video based tutorials) on Appscan, Acunetix, AMP-Webinspect, > Core-Impact for now.... Please make sure that you go thru all the related > videos only. There would be a button on the top or right of the video > displayed. Go thru related security videos' only**** > > Introductory video of AppScan, a corporate standard these days... > <http://www.youtube.com/watch?v=hZLGgyKoW8w&feature=related> > http://www.youtube.com/watch?v=hZLGgyKoW8w&feature=related > > Introductory text material on AppScan > <http://agile.csc.ncsu.edu/SEMaterials/tutorials/appscan/> > http://agile.csc.ncsu.edu/SEMaterials/tutorials/appscan/ > > Introductory video material on Acunetix > <http://www.youtube.com/watch?v=uM6X42rXRoE> > http://www.youtube.com/watch?v=uM6X42rXRoE > > Introductory text material on Acunetix > <http://www.acunetix.com/websitesecurity/index.htm> > http://www.acunetix.com/websitesecurity/index.htm > > Introductory video material on AMP > <http://www.youtube.com/watch?v=WvD7tgwYjnA&feature=related> > http://www.youtube.com/watch?v=WvD7tgwYjnA&feature=related > > Introductory text material on Webinspect > <https://download.spidynamics.com/webinspect/default.htm> > https://download.spidynamics.com/webinspect/default.htm > <http://www.daretohack.com/files/WebInspectTutorial-Detailed.pdf> > http://www.daretohack.com/files/WebInspectTutorial-Detailed.pdf > > Introductory text material on Core-Impact: > <http://www.coresecurity.com/content/core-impact-tutorial> > http://www.coresecurity.com/content/core-impact-tutorial > > Introductory video material on Core-Impact > <http://www.youtube.com/watch?v=uD9xJWyDIJU> > http://www.youtube.com/watch?v=uD9xJWyDIJU > > Let us know if you have any queries in understanding these... all these > infact show you how to use the tools. But after these learnings, you have to > concentrate on types of vulnerabilities and its exploitation or prevention > which we offcourse discuss regurlaly... keep watching and clarifying yours > doubts in our discussions / posts. Thanks! > > > Regards > Sandeep Thakur > > > > On Fri, Jun 4, 2010 at 10:56 AM, BRIAN RITCHIE <<[email protected]> > [email protected]> wrote: > >> Another alternative will be the Samurai WTF - >> http://*samurai*.<http://inguardians.com> >> inguardians.com >> >> >> On Sat, Jun 5, 2010 at 1:02 AM, N41K < <[email protected]> >> [email protected]> wrote: >> >>> If you want to perform Sec. Testing manuall then OWASP material will >>> guide you. >>> Else, for automatic testing use Accunetix / AppScan / etc... like >>> tools. >>> >>> Source: <http://www.owasp.org>www.owasp.org >>> >>> Regards, >>> 0xN41K >>> >>> On Jun 4, 9:24 pm, Esha Patil <[email protected]> wrote: >>> > Hello All, >>> > >>> > I am looking for information on how to perform Security testing for a >>> > web-based product. >>> > Please share any relevant resources/information. >>> > >>> > Thanks in advance. >>> > >>> > Regards, >>> > Esha >>> >>> -- >>> You received this message because you are subscribed to the Google Groups >>> "nforceit" group. >>> To post to this group, send an email to <[email protected]> >>> [email protected]. >>> To unsubscribe from this group, send email to >>> <nforceit%[email protected]> >>> [email protected]. >>> For more options, visit this group at >>> <http://groups.google.com/group/nforceit?hl=en-GB> >>> http://groups.google.com/group/nforceit?hl=en-GB. >>> >>> >> -- >> You received this message because you are subscribed to the Google Groups >> "nforceit" group. >> To post to this group, send an email to <[email protected]> >> [email protected]. >> To unsubscribe from this group, send email to >> <nforceit%[email protected]> >> [email protected]. >> For more options, visit this group at >> <http://groups.google.com/group/nforceit?hl=en-GB> >> http://groups.google.com/group/nforceit?hl=en-GB. >> > > -- > You received this message because you are subscribed to the Google Groups > "nforceit" group. > To post to this group, send an email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/nforceit?hl=en-GB. > > -- > You received this message because you are subscribed to the Google Groups > "nforceit" group. > To post to this group, send an email to [email protected]. > To unsubscribe from this group, send email to > [email protected]<nforceit%[email protected]> > . > For more options, visit this group at > http://groups.google.com/group/nforceit?hl=en-GB. > -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
