Over the last couple of weeks I’ve added more features to the Jeriko toolkit which I briefly covered in my post over here. For those of you who don’t know, Jeriko is a compilation of various bash scripts to ease manual penetration testing practices. The idea is to automate only the things which are sort of boring.
Anyway, now you have a few more scripts at your disposal. [...]
We certainly don’t need the ultimate pentesting framework but we can make use of the ultimate pen-testing environment.
This is sort of pre-announcement of a tool I am currently working on, different from jeriko, which I hope will improve the way we do pentests. The tool is in its early stage of development and I could make use of several JavaScript coders if someone is up for the challenge.
If you read the Wikipedia’s definition of Tiger Team you get the following: A tiger team is a specialized group tasked with testing the effectiveness of an organization’s ability to protect assets by attempting to circumvent, defeat or otherwise thwart that organization’s internal and external security. And further down we have In the computer security field, the term is now obsolete, and more common terms are penetration testers or security testers. [...]
test your web apps with websecurify application security testing runtime