Performing a Web Site Vulnerability and Security Assessment
SECURITY TESTING is an absolute requirement for Web servers and Web applications. When you are performing Web application security assessments, there are multiple components to consider to adequately identify and remedy risks. There are also many tools, both freeware and commercial, available to perform security and vulnerability testing. The most accurate method will involve using multiple programs and manual techniques. In addition to selecting and using the right tools, it’s equally important to plan the security assessment properly.
Some of the techniques and utilities mentioned in this chapter may be interpreted by systems administrators or security monitoring systems ...