This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 01:44, 22 July 2014 by Bill Sempf (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
This historical page is now part of the OWASP archive.
This page contains content that is outdated and is no longer being maintained. It is provided as a courtesy for individuals who are still using these technologies. This page may contain URLs that were once valid but may now link to sites or pages that no longer exist.
Please use the newer Edition(s) like Category:OWASP_.NET_Project

SAM"SHE (Security Analyser for Microsoft’s Shared Hosting Environments) is a tool that evaluates the security of IIS servers, and:

  • Designed to be 1-click test
  • Objective to raise the awareness of the problems by the ones that matter (the paying clients)
  • Contains no ‘exploits’ and ‘dangerous functionality’


SAM'SHE is part of ANBS and can be downloaded here:


SAM'SHE test execution on an Windows 2003 Web Edition server

SAMSHE ExecuteTests.png

SAM'SHE results on an Windows 2003 Web Edition server

SAMSHE Results.png