The latest news and blog information from testertools.com
TamperIE Web Security Tool is a small utility that enables HTML-form tampering for penetration testing of web applications.
TamperIE is an Internet Explorer Browser Helper Object which allows tampering with HTTP requests from Internet Explorer 5 and above.
TamperIE is a useful tool for security testing your web applications, in order to ensure you don’t make foolish assumptions about the data sent by client browsers.
Since the tool exposes and allows tampering with otherwise inconvenient input, many user-input security flaws immediately become apparent. SSL? TamperIE works inside IE itself, before data is placed on the wire; this means that it works fine even against SSL secured sites.
Digg
Del.icio.us
Mixx
Stumble
.Net Testing Tools (7)A/B Testing. (1)Agile Testing (2)Ajax Testing Tools (4)Ant (4)Application Lifecycle Management (1)Automated Testing (67)Automated Testing Framework (30)Benchmarking Tools (11)Browser Based Testing (6)C/C++ Testing Tools (9)Cloud Based Testing Tools (14)Data Comparison (3)Data Generators (8)development tools (11)Eclipse plugins (3)embedded systems (6)Flash Testing Framework (5)Functional Testing (20)GUI Testing (17)HTML (2)Java (21)JavaScript (4)Linux Testing Tools (2)Load testing (11)microsoft (2)Mobile (8)Network Testing (17)New Software (4)Newsletter Archive (1)Oracle Database Test Tools (6)Performance Testing (36)Perl Testing Tools (3)Python Testing Tools (7)Quality Assurance (2)registry repair tools (1)Robotic Testing Tools (1)Ruby Testing Tools (4)Security Testing (25)Site News (3)Social Media (1)SQL Testing Tools (2)Static Analysis (1)TCL Testing Tools (3)Test Documentation Tools (5)Test Enviroment Management (8)Test Harnesses (2)Test Management (53)Tester Tools News (13)Unit Testing (10)Usability Tools (11)VB (3)Web Application Testing (5)Web Testing (26)Welcome (2)
A free utility that you can use to demonstrate SQL injection vulnerabilities in web apps has been released by web security specialists, NT OBJECTives.
NTO SQL Invader is interesting because it isn’t designed to find the vulnerability; instead, the aim is to give you a way to show how the vulnerability could be
According to a report in techworld.com European countries have announced plans to ban hacking and penetration testing tools
Justice Ministers across Europe want to make the creation of “hacking tools” a criminal offence, but critics have hit back at the plans, saying that they are unworkable.
Ministers from all 27 countries of the European Union
According to a report in eweek – A security researcher will reveal at Black Hat DC how he deployed password-testing software on Amazon EC2 to break into a secured wireless network using WPA-PSK.
Titled ‘Amazon EC2 Used to Crack Password Encryption on Wireless Networks’ the hack took only 20 Minutes to complete:
Specialized
SearchSecurity.com have featured an article on a new Penetration Testing Software Release.
Written by Robert Westervelt, Core Security launches CISO-level pen testing software the article dicusses the release of a new tool and its features.
Core Security Technologies is introducing new pen testing software that, according to the company, has robust reporting capabilities, enabling CIOs, CISOs
Veracode is actively recruiting channel partners for a new cloud-based platform that allows partners and users to verify application security independently in both internally developed and third-party software without requiring source code or expensive in-house tools.
The launch of its Global Partner Programme will certify partners to sell its SecurityReview security verification solution delivered as software-as-a-service.
Scalable Network Technologies, Inc. (SNT), the leader in wireless network modeling and simulation, announced that the company has developed a software capability that enables integration of realistic cyber warfare communication effects into a Live Virtual Constructive (LVC) environment. The result is an advanced system that provides more realistic training and
The world’s largest network equipment manufacturer has awarded a major supply contract to Dyaptive Systems for additional 3G/4G subscriber simulation systems over a multi-year period. Dyaptive’s end-to-end solution was selected, after extensive trials and evaluations, to upgrade the primary test beds used to ensure robustness, performance, scale and quality of
Help Net Security have featured a book review on network attacks.
Seven Deadliest Network Attacks written by Stacy Prowell, Rob Kraus and Mike Borkin and published by Syngress, book introduces the reader to the anatomy of attacks aimed at networks: DoS, MiTM, war dialing, penetration testing, protocol tunneling, password replay and spanning tree
Rapid7®, the leading provider of unified vulnerability management and penetration testing solutions, today announced the availability of Metasploit Pro™, the new software for security professionals in enterprises, government agencies and consulting firms who need to make network security testing more efficient to reduce costs. Unlike alternative products, Metasploit Pro improves the efficiency of penetration
Athena Security, the makers of Athena FirePAC, a comprehensive enterprise firewall audit and operations tool, today announced that it will make the company’s Configuration Debugger, the first and only software solution that network engineers can use for offline troubleshooting of service availability issues on Cisco, Check Point and Netscreen firewalls,
0
Comments
Add