Difference between revisions of "ANSA"

Jump to: navigation, search
Line 1: Line 1:
| type=historical
| type=historical
| comment=This project doesn't work for contemporary versions of IIS.
| link=:Category:OWASP_.NET_Project

Latest revision as of 22:51, 9 July 2014

This historical page is now part of the OWASP archive.
This page contains content that is outdated and is no longer being maintained. It is provided as a courtesy for individuals who are still using these technologies. This page may contain URLs that were once valid but may now link to sites or pages that no longer exist.
Please use the newer Edition(s) like Category:OWASP_.NET_Project

ANSA - Asp.Net Security Analyzer

Asp.Net Security Analyser (ANSA) is a Windows based online tool that tests a server's security for known security vulnerabilities within an Asp.Net shared hosting environment.

This was the first tool developed by Dinis Cruz that highlights the security problems of Full Trust Asp.Net code (contains Proof of Concept tests (i.e. exploits))

Download: Owasp_ANSA_V0_31b.zip

Note: ANSA is also installed via the Installer_For_Owasp_IIS_ASP.NET_Tools


ANSA MainPage

ANSA MainPage.gif

ANSA Security Analyzer

ANSA Security Analyzer.jpg

ANSA WSH Execute Command.png

ANSA WSH Execute Command.png

ANSA WMI List User Accounts

ANSA WMI List User Accounts.png

ANSA FSO Browse Folders

ANSA FSO Browse Folders.png