Browse by Tags - HP Application Security Center Community
United States-English
Home - Tab - Selected
» Blogs - Tab
» Forums - Tab

Browse by Tags


HP Application Security Center Community » All Tags » checks (RSS)

» The New WebInspect LFI Engine

The release of WebInspect 7.7.113.3 (the Nov/2007 hotfix release) brought along a significant feature: a new-and-improved audit engine for finding local file reading/inclusion vulnerabilities. This article will introduce you to this new engine, how it works, and explain how to tune the associated check...
Posted to cat /dev/random | grep security (Weblog) by jbforristal on 12-05-2007

» WebInspect Check Tuning part III: Network-related check tuning

This is the third part in my three-part series on check tuning. Part one addressed the basic concepts of check inputs and tuning checks , while part two addressed some basic network topology concepts . This part will utilize the previously discussed concepts to tune three specific network-related checks...
Posted to cat /dev/random | grep security (Weblog) by jbforristal on 11-29-2007

» WebInspect Check Tuning part II: Understanding network topology

Launching a web scan is conceptually pretty easy: you just pop in a target URL and click 'Go'. You don't have to necessarily worry about routing tables, firewalls, and all that other network architecture stuff that magically lets the scanning system talk to the target web site. That is, you...
Posted to cat /dev/random | grep security (Weblog) by jbforristal on 10-25-2007

» WebInspect Check Tuning part I: Intro to check inputs

This is the first article in a three part series that focuses on tuning the checks included with WebInspect (and sister products, DevInspect and QAInspect), with the goal of increasing accuracy and usefulness. By default, the current version of WebInspect ships with thousands of checks. A 'check'...
Posted to cat /dev/random | grep security (Weblog) by jbforristal on 10-19-2007
Page 1 of 1 (4 items)
Information disclosed in this community becomes public. Exercise caution when deciding to disclose your personal information. HP reserves the right, but is not obligated to, edit or remove your comment if it contains personally identifiable information or other content HP deems unacceptable.  Opinions expressed are your personal opinions or those of the original authors, and not of HP. Please see HP's web Terms of Use for more details.