Home page logo

HP WebInspect

WebInspect is a web application security assessment tool that helps identify known and unknown vulnerabilities within the Web application layer. It can also help check that a Web server is configured properly, and attempts common web attacks such as parameter injection, cross-site scripting, directory traversal, and more. It was produced by Spidynamics, which is now part of HP. For downloads and more information, visit the HP WebInspect homepage.

Popularity #76, 36
Rating ★★★½ (7)
Latest release 9.10
June 27, 2011
(5 years, 2 months ago)


★★ Kari Johansen

Price is to high AND they hide the pricing, not transparent at all.

★★★★ Andreas

A very good scanner ... I'm totally impressed in the results I see.

You can see the other benefits too like the new WAF integration. So that immediate and automated, real-time virtual patching against identified vulnerabilities is possible with Radware’s AppWall http://h20195.www2.hpe.com/v2/GetDocument.aspx?docname=4AA6-4224ENW

Room to improve: price, management (complexity)

★★★★★ john

very good scanner it can find more than bugs. webinspect found a bug from nessus panel :)

★★★ Usuario malicioso

We still use this tool. It's on the high price range, but still very useful. No other tool (except for IBM, and acunetix) can be used consistently in big web environments to consolidate information and previous findings. You can integrate with Burp for more custom testing.

Despite the setbacks after HP acquisition, their development team keeps up with security updates.

The bad side is that the architecture is complex, and consumes a lot of computing resources.

No a tool for kiddies.

★★★ Google

Good scanner, but price is to high so we use acunetix

★★★★ Andrea Bodei

I tried all software above and WebInspect finds more vulnerabilities than any other. The price is very high so anyway We moved to Acunetix.

★★ Steve

The only reason I didn't give this a lower score is because it served a purpose for a long time. Then HP bought them out and like everything they touch the support went downhill. We switched to Acunetix.

Your comment

Along with your rating, you can use the comment form to post a review, tutorial, tips and tricks, or anything else others will find useful. If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).

  (will not be shown, will not be spammed)
(At least 50 characters. No markup is allowed. URLs will be made into links.)
 What is the length of an IPv6 address, in bytes? (antispam)

Feed for updates.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]