 |
 |
| sss |  |
 |
 |
 |
 |
 |
||
 |
 |
|
|
NT OBJECTives Offers Freeware to Strengthen Overall Website Security Combined Solution Identifies Website Security Exposure and Vulnerabilities Targeted by Hackers May 17, 2005, IRVINE, Calif. – NT OBJECTives, a leading innovator in Web application security, today releases two new freeware tools, ntoinsight 2.0 and ntoweb. By combining NT OBJECTives' leading automation and software intelligence features with Nikto's comprehensive database of attack signatures, these new tools create a freeware offering that exceeds many commercial software product capabilities. "We have been using ntoinsight since version one was released six months ago," said Scott Wilson, Partner at Marathon Consulting. "It provides us with useful HTML reports which are distributed to development, QA, security, and management to improve all aspects of our websites, especially security. It's a pretty impressive tool, especially for freeware." The combination of ntoinsight 2.0 and ntoweb strengthens overall website security by raising awareness of threat exposure and the existence of common vulnerabilities. ntoinsight scans websites and analyzes site content, architecture and external interdependencies, enabling a user to visualize site exposure and attack vectors. New features to ntoinsight 2.0 include updated crawling, improved JavaScript parsing, proxy support, asd well as HTTP Basic and NTLM authentication. NT OBJECTives' newest tool, ntoweb, is a free vulnerability assessment plug-in to ntoinsight that works with the Nikto vulnerability database to detect over 3,100 web server vulnerabilities. "Over 110,000 people have downloaded security tools from NT OBJECTives, including 10,000 downloads of ntoinsight 1.0," said Mike Shema, CSO of NT OBJECTives and author of numerous web application security books including the recent Hack Notes: Web Security. "Considering other companies sell the features available in ntoweb for thousands of dollars, we expect this new tool to be the most popular one yet." About ntoinsight 2.0 ntoinsight is a free command-line website analysis tool capable of scanning even the largest websites: analyzing site content, architecture, and external interdependencies. ntoinsight crawls all site links/resources and catalogues them with their resource attributes (i.e. file type, forms, mail ids, applets/objects, hidden fields, cookies, authentication, SQL connections and more). ntoinsight generates HTML reports that graphically communicate all findings, including web server platforms, response codes, resource details and site interdependencies (links leaving the domain, passing information, etc.). Furthermore, ntoinsight identifies "Attack Points" targeted by hackers, thus communicating the extent of site threat exposure. About ntoweb 1.0 ntoweb is a freeware vulnerability assessment plug-in for ntoinsight 2.0 that scans for the more than 3100 known vulnerability signatures in the Nikto database. Capable of automatic updates from the Nikto database, ntoweb assesses over than 625 web server platforms, and is one of the most comprehensive and well-supported web server vulnerability databases available. ntoweb reports are automatically included within ntoinsight scan reports and are built off of NT OBJECTives' industry leading designs. About NT OBJECTives Inc. Headquartered in Irvine, CA, NT OBJECTives is an innovative provider of comprehensive application security solutions designed to help organizations discover threats, analyze risk and develop sound security strategies. Its unique technology provides automated and accurate application vulnerability assessment, while its world-renowned team of security professionals provides expert knowledge transfer and technical services to help businesses understand, build and achieve application security compliance. NT OBJECTives -- Innovating Application Security |
|||||||||||||||||||
