BScan is a configurable and extendable web application security scanner that can be run from a command line headless (without UI). It's built on top of arguably the most popular commercial security testing tool Burp Suite from PortSwigger and Buby from E. Monti and T. Duehr.

The major use cases and advantages can be summarized as follows:

1) Run security scans offline from a command line headless (without UI);

2) Change the type of scanning easily by changing configuration parameters;

3) Extend the BScan's functionality by adding external modules;

4) Utilize Burp's default spidering, active and passing scanning features;

5) Integrate scan with different sources of known injections (e.g. Google's fuzzdb: http://code.google.com/p/fuzzdb/);

6) Create comprehensive security regression tests suites from artifacts provided by security auditors and run them periodically from a command line;

7) Log found issues to a plain text file.

More info: http://gryb.info/bscan

Project Activity

See All Activity >

Follow bscan

bscan Web Site

You Might Also Like
Manage your IT department more effectively Icon
Manage your IT department more effectively

Streamline your business from end to end with ConnectWise PSA

ConnectWise PSA (formerly Manage) allows you to stop working in separate systems, and helps you build a more profitable business. No more duplicate data entries, inefficient employees, manual invoices, and the inability to accurately track client service issues. Get a behind the scenes look into the award-winning PSA that automates processes for each area of business: sales, help desk, support, finance, and HR.
Learn More
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of bscan!

Additional Project Details

Registered

2012-08-07
Report inappropriate content