Borland Developer Network

Borland JBuilder Partner CD

 JBuilder

Trial

eXamineXT

All

eXamineXT (Snippet ID 23470)


Kenai Systems

Kenai eXamineXT is a point-and-click testing solution that enables software developers, QA teams, and security professionals to assess Web services for compliance with security policies and best practices.

By testing Web services for security exploits during development, enterprises can prevent security vulnerabilities from jeopardizing Web services in production.

Kenai eXamineXT’s features include:

* Extensible library of Security Test Profiles
* Automated generation of test cases for specific vulnerabilities
* Straightforward authoring tools for users who want to create their own tests using SOAP Requests
* Support for SOAP with Attachments (MIME and DIME)
* SSL client authentication for improved security
* Point-and-click GUI that makes testing fast and easy

eXamineXT enables software developers who lack security training to rigorously test Web services for known security vulnerabilities, such as cross-site scripting and SQL injections. Developers can also use eXamineXT to test Web services for compliance with:

* industry standards such as WS-Security and WS-I Basic Profile
* internal security policies and coding guidelines
* best practices

Developers creating new services with Borland JBuilder can use eXamineXT to automate security testing and to create re-usable tests for security and compliance.

Key Features of eXamineXT
Web Services Security
* Automatically generates test cases for known vulnerabilities
* Includes Security Test Profiles describing specific vulnerabilities; enables testers to import additional profiles as they become available
* Supports WS-Security XML Encryption; enables developers to encrypt individual Web Services data elements or complete Web Services documents
* Supports WS-Security Digital Signatures; enables developers to add a digital signature to individual Web Services data elements or complete Web Services documents
* Supports WS-Security User Security Tokens, including Username/Password and X.509 Certificate Token Profiles; enables developers to create security tokens
* Supports local key store

Web Services Message Validation
* Checks that Requests and Responses are valid XML
* Supports XML Schema Facets; enables developers to manipulate any value that may be required or furnished by a Web service
* Checks that Requests and Responses are valid SOAP; displays SOAP conversations in tree view and form view; allows developer to edit contents
* Checks that Requests and Responses conform to the WSDL definition
* Supports import and export of WSDLs and saved entities such as requests and history to facilitate collaborative development or quality assurance and test activities
* Checks the validity of operation element values within the context of the WSDL definition

Additional Features
* Features a central console window for error information and alerts
* Executes WS-I conformance tests to support interoperability guidelines from the Web Services Interoperability Organization

Install eXamineXT

eXamineXT home page