Are there any tools you recommend for security testing your web applications? I have used WebScarab from OWASP, but find it a bit difficult and unwieldy to use. Is there anything else you would suggest using? ...
I've recently found this blog entry on a tool that writes XSS attacks directly to the database. It looks like a terribly good way to scan an application for weaknesses in my applications. I've tried to run it on Mono, since my development platform is Linux. Unfortunately it crashes with a System.ArgumentNullException deep inside Microso...