This article is for personal reference learning, such as for commercial purposes, please buy genuine, thank you!
Introduction
IBM's AppScan is out of a Web application security testing tools, the use of black-box approach can scan common web application security vulnerabilities.
It works, first of all visible pages based on start crawling Station, while the common test management background; After obtaining all the pages with SQL injection principle be possible to test whether there is a point of injection and cross-site scripting attacks; also have cookie management, session period and other common web security vulnerabilities for testing.
AppScan function is complete, log on support functions and has a very strong report. In the scan results, not only can see the scan vulnerabilities, it also provides detailed vulnerability principle, the proposed changes, manual verification and other functions.
AppScan drawback is that, as a commercial software, the price is very expensive.
installation
Tools: AppScan9.0.3.6
1, run the .exe file, waiting to run complete
2, select "Chinese (Simplified)", the installation license agreement
3, check the "I accept ..." and click Next
4, select the installation directory, I am here to choose a custom directory, installation
5, the installation is complete
1, open the file installation directory, copy LicenseProvider.dll crack file to the installation directory, replace the original file
2, break completed and ready for use.
