Web Application Hacking & Testing Resources

The quoting of this page has been removed, please visit:

http://danielmiessler.com/projects/webappsec_testing_resources/#methodologies#

for the full article.

3 thoughts on “Web Application Hacking & Testing Resources

  1. I will add it!

    I am learning to love ZAP. The only thing preventing it from replacing or existing right beside Burp is support for multiple fuzz parameters. I LOVE the ability to add other tools to it. I’d also love it if i could be assured that all the Fiddler Watcher plugins passive checks and burps passive checks were included. That’s the problem with scanners or passive vuln checkers, they are only as good as their checks… and i dont want to have to use multiple tools to ensure im catching everything =(

    Anyways, awesome project. I’m glad someone is working on an open source badass proxy!

Leave a Reply

Your email address will not be published. Required fields are marked *