• Introduction to Application Security (AppSec)

  Alternative tools to perform the example attacks from our Intro to AppSec course

  Posted by Christophe on June 28, 2020 at 9:44 pm

  The example brute force attacks in the Intro to AppSec course were carried out with a tool called Hydra, while the SQL injections were carried out manually and with SQLMap, and finally, the XSS attacks were performed manually.

  There are other available tools to gather information and to prod defenses. Two popular ones are:

  • OWASP ZAP
  • Burp Suite

  Here’s a tutorial from a Cybr student, @sechvn , on how to install and configure Burp Suite in minutes for pentesting.

  Here’s more information on OWASP ZAP.

  Christophe replied 2 years, 8 months ago 1 Member · 0 Replies
• 0 Replies

Log In to Reply