A wizard helped me set up a series of XML- and non-XML- specific penetration tests against a .Net Web service running in our labs. Because the service offers operations that interact with a database, the SQL injection tests were definitely of interest, even though SQL injection attacks through XML aren't much different from those that exploit other Web technologies, such as ASP, JSP and PHP.
|
Good Automates testing of common SOAP and XML vulnerabilities Configurable dependencies let you test a composite application in the flow as required by the application Supports HTTP 1.0, HTTP 1.1 and JMS as SOAP transports
XPath knowledge necessary for some WS-Security operations Infers vulnerabilities without clear explanations Parasoft SOAPtest 4.0, starts at $3,495. Parasoft, (888) 305-0041, (626) 256-3680. www.parasoft.com |
Discover the benefits of scalable backbone and network services for application and cloud providers.
Network automation is gaining momentum. Here's how you can drive this powerful technology to its full potential.
Subsea cable alternatives can provide a level of comfort for those concerned about disruptions. Realistically, they will continue to play a small, but critical role in the short term.
