Topic: Issue with HP WebInspect

Message

   Hi,
I used HP Web Inspect to scan an online application, using both a custom policy and the standard policy. My custom policy included an check for Cross Site Scripting(No-5649), which is also included in the Standard Policy.
On scanning, Webinspect was able to capture a Threat related to the above category when using the standard policy. But it did not capture any threat when I used the custom policy in same scan.(even though it had gone through the same urls both the time)
I have used the threat no 5649 just as an example. I am facing this issue for multiple threats.
Can anybody please help me out with this?
Thanks

Author	Message
sovikmukh Newbie Joined: 18May2009 Location: India Online Status: Offline Posts: 1	Topic: Issue with HP WebInspect Posted: 18May2009 at 3:25am
	Hi, I used HP Web Inspect to scan an online application, using both a custom policy and the standard policy. My custom policy included an check for Cross Site Scripting(No-5649), which is also included in the Standard Policy. On scanning, Webinspect was able to capture a Threat related to the above category when using the standard policy. But it did not capture any threat when I used the custom policy in same scan.(even though it had gone through the same urls both the time) I have used the threat no 5649 just as an example. I am facing this issue for multiple threats. Can anybody please help me out with this? Thanks
	Test to Break Post Resume: Click here to Upload your Resume & Apply for Jobs

	IP Logged


One Stop Testing Forum : Types Of Software Testing @ OneStopTesting : Security Testing @ OneStopTesting