We changed our name from IT Central Station: Here's why

Which tool can you recommend for Vulnerability Assessment and Penetration Testing for an application built on the Microsoft Stack?

Hi peers,

We have developed an eCommerce system using the Microsoft Technology Stack. 

Now, we would like to perform Vulnerability Assessment and Penetration Testing (VAPT) of this system using a comprehensive tool. 

Can anyone recommend a tool that (preferably, an open-source one) to perform VAPT on the eCommerce application before releasing it to the client on production?

Thanks for your help!

ITCS user
11 Answer

author avatar
Top 5LeaderboardReal User

You can start with OpenVAS (an excellent tool during "first steps"). 

Depending on your goals, you can add Kali Linux during tests for "deeper inspection" validation. Remember that Microsoft offers some security tools and consulting based on your "contract/plan".

Find out what your peers are saying about Tenable Network Security, Rapid7, Morphisec and others in Vulnerability Management. Updated: January 2022.
564,143 professionals have used our research since 2012.