In that case one option is to use OWASP Zed Attack Proxy (ZAP),
potentially in conjunction with tools like the OWASP Ajax Crawling
Tool (ACT).
I've documented a simple way of using ZAP for security regression
tests here: http://code.google.com/p/bodgeit/wiki/RegTests
ZAP has a command line API and d...
potentially in conjunction with tools like the OWASP Ajax Crawling
Tool (ACT).
I've documented a simple way of using ZAP for security regression
tests here: http://code.google.com/p/bodgeit/wiki/RegTests
ZAP has a command line API and d...
[ more ]