Thursday, May 27, 2010

Watcher v1.4.0 Released


A Passive tool for Web Security Testing and Auditing

Watcher is a runtime passive-analysis tool for HTTP-based Web applications.Being passive means it won't damage production systems,it's completely safe to use in Cloud computing,shared hosting,and dedicated hosting environments.Watcher detects Web-application security issues as well as operational configuration issues.Watcher provides pen-testers hot-spot detection for vulnerabilities,developers quick sanity checks,and auditors PCI compliance auditing.It looks for issues related to mashups,user-controlled payloads(potential XSS),cookies,comments,HTTP headers,SSL,Flash,Silverlight,referrer leaks,information disclosure,Unicode,and more

More info and Download: http://websecuritytool.codeplex.com

No comments: