Web server scanner: scanning on IIS CGI and HTTP

Abstract

This paper explains about the design and implementation of Web server scanner. The scanner detected the security weaknesses on IIS, CGI and HTTP. A report is produced for audit log purposes to help decrease the security weaknesses. In Internet security, no hacking tool is more celebrated than the scanner. The scanner is a program that automatically detects security weaknesses in a remote or local host. It might reveal certain inherent weakness within the target host. The primary attributes of the scanner includes the capability to find a machine or network, the capability to find out what services are being run on the host, and the capability to test those services for known holes.