Submission + - Creating a Security Test Evironment 1
Enderandrew writes: "Our IT department has been tasked with creating a list of authorized software, and only allowing software to be added to such a list after it has been thoroughly tested. On principle that sounds like a great idea. I wonder why he haven't done that already. The practical side of me then immediately wonders how we should test apps to make sure they are secure. We have tools to scan internal websites, and we use MBSA for our Windows servers. However, I'm turning to Slashdot wondering what are the best methods for creating a test environment where I can analyze apps for security vulnerabilities. We're a multi-platform shop, but my main concern lies with Windows apps."
