by wildmXranat on 5/21/14, 1:20 PM with 0 comments
The tool will be used internally for testing of our own applications.
I have read most recent comparison reports about some of the most popular commercial tools listed on this site: http://projects.webappsec.org/w/page/13246988/Web-Application-Security-Scanner-List
Do you have experience integrating a tool like this into a development workflow ?
What processes do you settle on ?
Which tool(s) are you using and would you recommend it ? Would a tool like NTO Spider be on that list ?
How would you integrate security scanning into an internal team ?