pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Creating API for SSS & Appscan

from [Vivek P] [Permanent Link][Original]
To: "Ory Segal" <osegal@watchfire.com>
Subject: Re: Creating API for SSS & Appscan
From: "Vivek P" <iamherevivek@gmail.com>
Date: Fri, 25 May 2007 11:39:29 +0530
Cc: Pen-Testing <pen-test@securityfocus.com>, security-basics@securityfocus.com, webappsec@securityfocus.com
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Ez3q+WOLyURQDZ0Cdv6dG0xeInL/fgbruRMP254Y6rfmLE2Qq+0y4UlyrERiXAjuEFaJVXm91uXsG7r0pQH+7PQiLyyjcVpjDSf9oJ3cKkjocNNyo8KgFIDhBd/1BJg51rVsZnxSQiIIhgOmDWcLRwM7eIbBSXjD0DVBB94WJHo=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=NabTbYTTCs9b7MI2bnz20Q6f/EsH2za+ynaUDQ1SwPwwDZzXL64m9I9x/tedjZwMMkrgap5bBbET69cn79jo0UkhDATQW2HvyGlQr2bdoH1FchEx+ZEzP0eH6WeKLZTEg8MM45Kb5aGbUY6aVZ7rzRn0IXgPscwbvbBVPuh15KI=
In-reply-to: <0FF3BDA8C55900469FA6011BEFC06F43B159CC@2WFILEMAIL.israel.ottawa.watchfire.com>
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
References: <0FF3BDA8C55900469FA6011BEFC06F43B159CC@2WFILEMAIL.israel.ottawa.watchfire.com>
Resent-date: Fri, 25 May 2007 13:21:25 -0600 (MDT)
Resent-from: pen-test-return-1078484252@securityfocus.com
Resent-message-id: <20070525192125.B8721144C5A@outgoing2.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com 
hi

That was a great contribution to my research,
thank u segal..


On 5/25/07, Ory Segal <osegal@watchfire.com> wrote:

Hi Vivek,

You should check out AppScan's eXtensions Framework & SDK at
http://axf.watchfire.com - it will allow you to create more types of
integrations that just simple APIs. You can also download the complete
SDK documentation from that site.

Thanks,
-Ory Segal
Watchfire



> -----Original Message-----
> From: listbounce@securityfocus.com
> [mailto:listbounce@securityfocus.com] On Behalf Of Vivek P
> Sent: Thursday, May 24, 2007 11:31 AM
> To: Pen-Testing; security-basics@securityfocus.com;
> webappsec@securityfocus.com
> Subject: Creating API for SSS & Appscan
>
> Hi to all @securityfocus
>
> I am on look out for some solutions to automate and imrove
> pentesting setup of mine, i use an array of tools & alot of
> internal domains to test atleast 10000 of them. I use SSS,
> Appscan etc for that.
>
> I had a logical solution to make things simple by developing
> an API so that i can run tools like pentest -sss.exe
> -appscan.exe --www.targetsite.com /all options... or
> something like that
>
> I would like to get help on topics
>
>  a) some API's that are available for sss (related documentations)
>  b) some API for appscan (or related documentations)
>  c) some peek into tools that can sniff queries done from
> core of these testing tools to the kernel (so that i can duplicate the
> replies)
>
> This is just a research level discussion. Please reply with
> your valuable suggestions.
>
>
> thanx for your time..
> --
> Vivek P Nair
> Vice President, Technology
> ASG
> www.vivekpnair.co.nr
> iamherevivek@gmail.com
> vivek.p.nair@appingroup.com
> d3@d Br@iN
> "i thought i would change the world, But they wouldnt gimme
> the source Code !!"
>
> --------------------------------------------------------------
> ----------
> This List Sponsored by: Cenzic
>
> Are you using SPI, Watchfire or WhiteHat?
> Consider getting clear vision with Cenzic See HOW Now with
> our 20/20 program!
>
> http://www.cenzic.com/c/2020
> --------------------------------------------------------------
> ----------
>
>




--
Vivek P Nair
Vice President, Technology
Appin Knowledge Solutions
Appin Security Group
www.vivekpnair.co.nr
iamherevivek@gmail.com
vivek.p.nair@appingroup.com
d3@d Br@iN
"i thought i would change the world, But they wouldnt gimme the source Code !!"

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Creating API for SSS & Appscan, Ory Segal
Next by Date:  RE: Consulting License Offer, Michael Scheidell
Previous by Thread:  RE: Creating API for SSS & Appscan, Ory Segal
Next by Thread:  Survey on Supercomputer Cluster Security, cluster . security
Indexes:  [Date] [Thread] [Top] [All Lists]