The Threat Classification is an effort to classify the weaknesses, and attacks that can lead to the compromise of a website, its data, or its users
What is WASC Threat Classification?
The WASC Threat Classification is a cooperative effort to clarify and organize the threats to the security of a web site. The members of the Web Application Security Consortium have created this project to develop and promote industry standard terminology for describing these issues. Application developers, security professionals, software vendors, and compliance auditors will have the ability to access a consistent language and definitions for web security related issues.
Who should use WASC Threat Classification?
We have have to prepare lots of documents in day to day , to prove our work , this document provides a great help for adding good words making our document more intresting to read, well for tose whore are new in information security this will surly help you to know difficult words quickly.
To download or view online click here
Tagged as: audit, operating system, WASC Threat Classification, web security
So, within 15 days, the author of Hostmap has released an updated version. We have previously written about Hostmap here.
“hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby by Alessandro `jekil` Tanasi under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests. and licensed under ”
Download Hostmap version 0.2.1 here!
Tagged as: Hostmap, operating system, Penetration Testing
Hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby by Alessandro `jekil` Tanasi and licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.
Hostmap uses several techniques to enumerate all the hostnames associated with an IP address. Using this we can segregate vitrual servers with real servers and paln for penetration testing. Its simple command line option makes it fast to use again reporting feature is missing, we hoping it is added in next release
Features of Hostmap:
- DNS names and virtual hosts enumeration
- Multiple discovery techniques, to read more see documentation.
- Results correlation, aggregation and normalization
- Multithreaded and event based engine
- Platform independent
Basic Requirements: Rupy interpreter is required .
Download Hostmap here.
Tagged as: Hostmap, operating system, Penetration Testing
