NEWS: >> Web application security testing reaches new level (SearchAppSecurity.com) 27 Jun 2006 >> Fortify Tracer fills in the app security blanks (SearchAppSecurity.com) 23 Oct 2006 >> Cenzic unveils application security assessment tool (SearchAppSecurity.com) 01 Nov 2006 >> SPI Dynamics beefs up DevInspect tool (SearchAppSecurity.com) 06 Nov 2006 >> Ounce Labs joins forces with app security vendors (SearchAppSecurity.com) 10 Oct 2006 >> Application security tools address Ajax security (SearchSoftwareQuality.com) 22 May 2006 >> Application vulnerability assessment improved by Fortify, Watchfire partnership (SearchSoftwareQuality.com) 15 Aug 2006 >> Watchfire introduces managed services for assessing security vulnerabilities (SearchAppSecurity.com) 11 Apr 2006 >> Vulnerability tools get teeth (Dark Reading) 18 Dec 2006 >> Hybrid app security analysis: Increasing reliability of security testing results (SecurityProNews) 09 Aug 2006 ADVICE: >> Testing for security in the age of Ajax programming TIP :Ajax applications require an innovative approach to security testing. Bryan Sullivan offers programmers and QA testers tips ... >> Find Ajax security flaws using tests TIP :Ajax, JavaScript, RSS technology and Active X are all client-side active content that needs to be manually tested. Andres ... >> Ways to automate SQL injection testing TIP :Manual testing for SQL injection requires much effort with little guarantee that you'll find every vulnerability. Run ... >> Buffer overflow tools facilitate application testing TIP :Web applications are the conduit for buffer overflow attacks on the Web server. As such, it's imperative to make sure your ... >> Penetration testing best practices TIP :Penetration testing can help you find critical vulnerabilties in your Web applications. Here are some best practices for pen ... >> Using Metasploit for real-world security tests TIP :Metasploit's penetration tester can pinpoint vulnerablities in your Web applications. Here are some tips for properly using ... >> Source code security scanners: A revamped option for securing custom software TIP :Automated source code analysis and penetration testing tools allow software makes greater freedom for incorporating ... >> Application security increased by static and dynamic code analysis TIP :Integrating security measures into the software development life cycle (SDLC) is crucial Web application security. One of ... >> Eight reasons to plan out your security testing TIP :Why take the time to plan before you test your security? Here are eight reasons why you should take your time before ... >> Beware: Security testing tools won't find everything TIP :Security testing tools can save you countless hours of legwork, but relying too much on them could ultimately weaken your ... >> What's the best tool to get started security testing? ASK THE EXPERTS :There are so many application security tools. What are the basic ones used to get started security testing? >> Sorting out black box, white box and gray box software testing methods ASK THE EXPERTS :I'm having trouble sorting out what is black box testing, what is clear box testing, white box testing and gray box testing. >> ASP.NET security tools and techniques ASK THE EXPERTS :I work at a state university with small IT budgets. We need to find the best tools to scan for Web vulnerabilities and also ... >> Using fuzzer tools to find vulnerabilities ASK THE EXPERTS :What are "fuzzing" tools and what do they do? If hackers are using them, can they be used for security? >> Code analysis: Which tool is right for you? ASK THE EXPERTS :We're in the market for a code scanner or some sort of code analysis tool. What kinds of features should we look for?

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Software security testing tools Static analysis tool helps software engineers find bugs during builds Web security: Web services an overlooked entry point for attacks Automated security tool finds flaws in enterprise apps Parasoft enhances its Application Security Solution Web application security and the PCI DSS PCI DSS compliance: Code review PCI compliance help via Fortify software Homeland Security-backed effort shows defects drop in open source software Cenzic Web application security tool targets CSRF attacks Ruby on Rails security audit service available

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary