Penetration/Security test tool

Can anyone sugest a good open source tool for security/penetration testing?

Thanks,
Sudha

Replies to This Discussion

Permalink Reply by chirag parikh on November 27, 2009 at 10:36am

Though There are many penetration testing tools. But following 2 are very good tools for penetration testing.

1. Paros
2. Burp Suite

▶ Reply

Permalink Reply by Hitesh Shah on November 27, 2009 at 2:30pm

Hi chirag parikh ,
1. Paros , 2. Burp Suite both tool is useful in web application Testing ? its open source tool ?
Please send me download link and share your experience in web Testing security.
Thanks

▶ Reply

Permalink Reply by chirag parikh on November 27, 2009 at 2:54pm

Yes.
Both tools are useful for web applications.
Paros is open source. and Burp Suite has 'Basic editions' that is free. But it has almost all the features that one requires for pen testing.
To get the more information about Burp Suite, Visit the link : http://portswigger.net/suite/
To get the more information about Paros, Visit the link http://www.parosproxy.org/index.shtml
Above both tools are widely use in Industry for Security Testing.
in web application security testing, Follow the best accepted security Industry standards: OWASP and PCI DSS security.

▶ Reply

Permalink Reply by Saravanan on December 17, 2009 at 3:47pm

Can you tell me how to work with paros tool. The doc which is provided by the paros is not sufficient (http://www.parosproxy.org/paros_user_guide.pdf). It has only functions. I don't understand how to start test and what to test

Thanks in advance....

▶ Reply

Permalink Reply by Ankit Mehta on November 16, 2010 at 12:28pm

Hey,

Some more tools to add
1. W3AF (Web Application Attack and Audit Framework)
Automated penetration testing tool

2. Samurai (Web application penetration testing ready OS)