Yes. Without a doubt, automated scanners are necessary. They save so much time. Tools like Acunetix, DirBuster, Paros, Burp, AppScan, Nessus, FoundScan, Qualys, are absolutely necessary for any good security test.
There are too many security holes readily identified by these applications. While these tools can not provide complex attacks which are unknown, they can cross of a lot of known problems right off the bat.
Don't get me wrong. These tools can never replace a qualified analyst, but they are a great start to check the common flaws in a system. If available, I always run an automated scanner-after mapping functionality.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment