ANSA

From OWASP
Revision as of 21:50, 9 July 2014 by Bill Sempf (Talk | contribs)

Jump to: navigation, search
This historical page is now part of the OWASP archive.
This page contains content that is outdated and is no longer being maintained. It is provided as a courtesy for individuals who are still using these technologies. This page may contain URLs that were once valid but may now link to sites or pages that no longer exist.
(Please help OWASP and provide the Links '| link=<Name of the Page>| link1=<Name of the 2nd Pge>| link2=<Name of the 3rd Page>' to the latest content, see FixME)
Comment: This project doesn't work for contemporary versions of IIS.

ANSA - Asp.Net Security Analyzer

Asp.Net Security Analyser (ANSA) is a Windows based online tool that tests a server's security for known security vulnerabilities within an Asp.Net shared hosting environment.

This was the first tool developed by Dinis Cruz that highlights the security problems of Full Trust Asp.Net code (contains Proof of Concept tests (i.e. exploits))


Download: Owasp_ANSA_V0_31b.zip

Note: ANSA is also installed via the Installer_For_Owasp_IIS_ASP.NET_Tools


Screenshots

ANSA MainPage

ANSA MainPage.gif


ANSA Security Analyzer

ANSA Security Analyzer.jpg


ANSA WSH Execute Command.png

ANSA WSH Execute Command.png


ANSA WMI List User Accounts

ANSA WMI List User Accounts.png


ANSA FSO Browse Folders

ANSA FSO Browse Folders.png