Pen-testing a Web Service

The new 5-series SOAPbox, now on the Vordel site, includes the ability to mimic potential attack paths by automatically injecting malicious content into XML messages. Malicious content attack types include SQL Injection, XPath Injection and Message value fuzzing. Be sure to ensure that you are testing a Web Service which is under your control, or one which you are authorized to test, before sending harmful content to it!