Web Application Scanner
Briefly, a web application scanner explores a web application by crawling through its web pages and examines it for security vulnerabilities, which involves generation of malicious inputs and evaluation of application's responses.
Web Application Scanner Functional Specification Version 1.0, NIST Special Publication 500-269 http://samate.nist.gov/docs/webapp_scanner_spec_sp500-269.pdf
- 21 August 2007 DRAFT http://samate.nist.gov/docs/webapp_scanner_spec_08_21_07.pdf
- Please email comments on the latest draft to "email@example.com" by COB September 20, 2007. Sending comments to this address implies your consent for your email to be posted at this web site.
- 7 March 2007 DRAFT http://samate.nist.gov/docs/webapp_scanner_spec_03_07_07.pdf
A group of experts to advise on specification, test plans, and test suites.