It great to see the comparison. We are using AppScan for more than 5 years now 
and I somehow feel that it does not give me full control to do everything.

Its of course a good tool for novice starting AppSec. We also use Cenzic and it 
give me some extra features and maybe also a way to compare every time I get 
into a engagement.

FYI, AppScan has a Enterprise version and its a cool tool for a enterprise wise 
deployment and getting AppSec testing into SDLC.

Abir,

Thanks for this report. It gives me a good reason to try WebInspect :-)

thanks,
Gautam
  ----- Original Message ----- 
  From: Abir Banerjee 
  To: [email protected] 
  Cc: [email protected] 
  Sent: Saturday, February 27, 2010 7:24 AM
  Subject: Re: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison


  Hello Manik,

  Webinspect is much better than Appscan since appscan shows up a lot of false 
positives and the best web vulnerablity canner would be Acunetix WVS + 
Acusensor. Please the comparision file attached.

  Regards,

  Abeer Banerjee
  +91 9987099708


------------------------------------------------------------------------------
  From: Manik Gupta <[email protected]>
  To: [email protected]
  Sent: Mon, 22 February, 2010 10:22:14 AM
  Subject: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison


  Hi,

  Kindly let me know which tool is better for penetration testing among IBM 
AppSCAN & HP Webinspect.


  Regards,
  Manik

   

------------------------------------------------------------------------------
  Join SQAtester.com Community  ---> 
http://www.sqatester.com/testersarea/joinus.htm


------------------------------------------------------------------------------
  Your Mail works best with the New Yahoo Optimized IE8. Get it NOW!.


------------------------------------------------------------------------------


  _______________________________________________
  Owasp-delhi mailing list
  [email protected]
  https://lists.owasp.org/mailman/listinfo/owasp-delhi
_______________________________________________
Owasp-delhi mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-delhi

Reply via email to