By Jim Rapoza (eWeek Mag)
March 13, 2006
Review: Web application penetration-testing tool veterans WebInspect and AppScan show they still have the right security stuff.
Despite all the attention that security holes in various operating systems get, the most likely avenue for successfully compromising a corporate system is a poorly developed Web-based application. It's essential, therefore, for developers to find potential problems before deploying a Web application to a live site.
That's where Web application penetration-testing products come in. These tools let developers perform exhaustive application scans to find known security holes or even poorly designed code that could potentially lead to a security breach.
For full story:
Podcast with Peter Coffee and Jim Rapoza looks at recent reviews of Web security products: