It great to see the comparison. We are using AppScan for more than 5 years now and I somehow feel that it does not give me full control to do everything.
Its of course a good tool for novice starting AppSec. We also use Cenzic and it give me some extra features and maybe also a way to compare every time I get into a engagement. FYI, AppScan has a Enterprise version and its a cool tool for a enterprise wise deployment and getting AppSec testing into SDLC. Abir, Thanks for this report. It gives me a good reason to try WebInspect :-) thanks, Gautam ----- Original Message ----- From: Abir Banerjee To: [email protected] Cc: [email protected] Sent: Saturday, February 27, 2010 7:24 AM Subject: Re: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison Hello Manik, Webinspect is much better than Appscan since appscan shows up a lot of false positives and the best web vulnerablity canner would be Acunetix WVS + Acusensor. Please the comparision file attached. Regards, Abeer Banerjee +91 9987099708 ------------------------------------------------------------------------------ From: Manik Gupta <[email protected]> To: [email protected] Sent: Mon, 22 February, 2010 10:22:14 AM Subject: [Owasp-delhi] IBM AppSCAN & HP Webinspect comparison Hi, Kindly let me know which tool is better for penetration testing among IBM AppSCAN & HP Webinspect. Regards, Manik ------------------------------------------------------------------------------ Join SQAtester.com Community ---> http://www.sqatester.com/testersarea/joinus.htm ------------------------------------------------------------------------------ Your Mail works best with the New Yahoo Optimized IE8. Get it NOW!. ------------------------------------------------------------------------------ _______________________________________________ Owasp-delhi mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-delhi
_______________________________________________ Owasp-delhi mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-delhi
