Re: Creating API for SSS & Appscan



hi

That was a great contribution to my research,
thank u segal..


On 5/25/07, Ory Segal <osegal@xxxxxxxxxxxxx> wrote:
Hi Vivek,

You should check out AppScan's eXtensions Framework & SDK at
http://axf.watchfire.com - it will allow you to create more types of
integrations that just simple APIs. You can also download the complete
SDK documentation from that site.

Thanks,
-Ory Segal
Watchfire



> -----Original Message-----
> From: listbounce@xxxxxxxxxxxxxxxxx
> [mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of Vivek P
> Sent: Thursday, May 24, 2007 11:31 AM
> To: Pen-Testing; security-basics@xxxxxxxxxxxxxxxxx;
> webappsec@xxxxxxxxxxxxxxxxx
> Subject: Creating API for SSS & Appscan
>
> Hi to all @securityfocus
>
> I am on look out for some solutions to automate and imrove
> pentesting setup of mine, i use an array of tools & alot of
> internal domains to test atleast 10000 of them. I use SSS,
> Appscan etc for that.
>
> I had a logical solution to make things simple by developing
> an API so that i can run tools like pentest -sss.exe
> -appscan.exe --www.targetsite.com /all options... or
> something like that
>
> I would like to get help on topics
>
> a) some API's that are available for sss (related documentations)
> b) some API for appscan (or related documentations)
> c) some peek into tools that can sniff queries done from
> core of these testing tools to the kernel (so that i can duplicate the
> replies)
>
> This is just a research level discussion. Please reply with
> your valuable suggestions.
>
>
> thanx for your time..
> --
> Vivek P Nair
> Vice President, Technology
> ASG
> www.vivekpnair.co.nr
> iamherevivek@xxxxxxxxx
> vivek.p.nair@xxxxxxxxxxxxxx
> d3@d Br@iN
> "i thought i would change the world, But they wouldnt gimme
> the source Code !!"
>
> --------------------------------------------------------------
> ----------
> This List Sponsored by: Cenzic
>
> Are you using SPI, Watchfire or WhiteHat?
> Consider getting clear vision with Cenzic See HOW Now with
> our 20/20 program!
>
> http://www.cenzic.com/c/2020
> --------------------------------------------------------------
> ----------
>
>



--
Vivek P Nair
Vice President, Technology
Appin Knowledge Solutions
Appin Security Group
www.vivekpnair.co.nr
iamherevivek@xxxxxxxxx
vivek.p.nair@xxxxxxxxxxxxxx
d3@d Br@iN
"i thought i would change the world, But they wouldnt gimme the source Code !!"



Relevant Pages