HP WebInspect 10.1

HP WebInspect is a dynamic application security testing (DAST) tool for finding vulnerabilities in web applications and web services. It automatically crawls sites and APIs, exercising pages and multi-step workflows to uncover issues such as SQL injection, cross-site scripting (XSS), cross-site request forgery (CSRF), insecure headers, misconfigurations, and exposure of sensitive data. It supports authenticated and stateful scanning, macro recording for complex logins, and testing of modern single-page applications as well as REST and SOAP endpoints.

Key capabilities:

• Automated crawling and auditing with customizable scan policies and throttling
• Authenticated, stateful, and workflow-aware scans with macro/script support
• Coverage for JavaScript-heavy apps and API backends
• Risk-ranked findings with remediation guidance and false-positive tuning
• Reporting mapped to common standards (e.g., OWASP Top 10, PCI DSS, CWE)
• CI/CD and ticketing integrations for DevSecOps workflows
• Optional centralized management and distributed scanning via enterprise deployment

WebInspect is typically used by application security teams, DevSecOps engineers, and QA to perform fast, repeatable dynamic testing in development and pre-production environments. It complements manual penetration testing and source code analysis by providing broad, automated coverage of running applications.

HP WebInspect is developed by Hewlett Packard, Inc. and is used by 1 user of Software Informer. The most popular versions of this product among our users are: 7.7, 8.0, 8.1, 9.0 and 10.1. The names of program executable files are ASCMonitor.exe, WebInspect.exe.

You can check WYSIWYG Web Builder, Google Web Accelerator, Easy File Sharing Web Server and other related programs like Visual Web Spider at the "download" section.