WS-Attacker is a modular framework for web services penetration testing. It is a free and easy to use software solution, which provides an all-in-one security checking interface with only a few clicks.
WS-Attacker is developed by the Chair of Network and Datasecurity, Ruhr-University Bochum (http://nds.rub.de/) and the 3curity GmbH (http://3curity.de/).
Features
- Automatic XML Encryption Attacks against Web Services
- Automatic XML Signature Wrapping attack against Web Services
- XML-Denial-of-Service Techniques against Web Services
- SOAPAction Spoofing and WS-Addressing Spoofing
- Further Attacks in Development (even apart from Web Services)
Categories
Penetration TestingOther Useful Business Software
ConnectWise SIEM (formerly Perch) offers threat detection and response backed by an in-house Security Operations Center (SOC). Defend against business email compromise, account takeovers, and see beyond your network traffic. Our team of threat analysts does all the tedium for you, eliminating the noise and sending only identified and verified treats to action on. Built with multi-tenancy, ConnectWise SIEM helps you keep clients safe with the best threat intel on the market.
Rate This Project
Login To Rate This Project
User Reviews
-
Did not work at all for me, I was not able to retrieve a WSDL file once. Thought it might be an issue with my proxy configuration but it even was not working in my very basic local test environment.