Automated Security Analyser for ASP.NET Websites

ASafaWeb is in public beta

It's very early days for ASafaWeb; there are limited scans, it hasn't been extensively tested and it's been put together on a shoestring (total cost: $12.17 — just domain registration). The beta label exists so that folks don't set expectations of it being a highly refined, faultless product. Whilst every attempt has been made to head in that direction, it will inevitably have glitches.

Projects like this need feedback to be successful. If you have anything you'd like to share — good, bad or otherwise — please send me an email and help me improve it for everyone. I'm particularly interested in known configuration vulnerabilities ASafaWeb hasn't detected or any false positives it returns.