Website applications are often subject to hacking. The best way to defend against malicious attacks is to use a Dynamic Application Security Testing (DAST) tool to perform BlackBox Testing on your application. Lexington Soft offers the DAST tool, DefenseCode WebScanner, which tests a website’s security by carrying out a large number of attacks using the kind of techniques that real attackers would use.

WebScanner performs security audits of active web applications by executing more than 5000 Common Vulnerabilities and Exposures tests for various web server and web technology vulnerabilities, such as

  • SQL Injection
  • Blind SQL Injection
  • Timing Based SQL Injection
  • File Disclosure
  • Page Inclusion
  • Cross Site Scripting
  • HTTP Response Splitting
  • Backup File
  • Directory Listing Allowed
  • Form File Upload
  • and many more.

WebScanner supports major web technologies such as HTML, HTML5, Web 2.0, AJAX/jQuery, JavaScript and Flash, as well as API endpoints such as Web Services, SOAP, JSON and XML. With its login sequence recorder and HTTP Proxy, WebScanner can scan web applications that use CAPTCHA, OTP (One Time Password) or Two Factor Authentication (2FA).

WebScanner is among the fastest and most effective DAST tools in the market. It has a simple, easy to use interface and works on any web application development platform, even when application source code is no longer available.

Want to know if DefenseCode WebScanner will meet your needs? Lexington Soft will gladly provide a sales demo and proof of concept, conduct product evaluations and even offer you a free trial!

As a DefenseCode partner, Lexington Soft is committed to providing the best after-sales support for our customers. We offer

Lexington Soft also offers the following SAST and DAST tools:

Find and fix security vulnerabilities in your applications. Contact us today!