Web Services Scanner

After a long research last year i approved to use SoapSonar web services scanner from the company crosschecknet. The update option of product really mass, you have to redownload and install all product from the scratch but the options like compliance and performance checks and also vulnerability were really good enough.
Within 2 years time this kind of professional scanners will be popular and used within most companies. Before crosschecknet i was in touch with one opensource web services scanners, i said one because there is not much its belongs WSDigger from Foundstone(Mcafee*) company. But it restrict to only XPATH & blind XPATH injection.

You have also one option, using webscarab web services parser and fuzzing if good enough in fuzzer and web services vulnerability string or signatures .That's really enjoyable and attractive but needs so many workout.

So the product in web services =>
1.SoapSonar from Crosschecknet
2.And other web vulnerability scanners that have option to scan web services..(not really good its a focus problem:)
3.Opensource wsdl parsers and fuzzers.

And the fourth one is i will open a opensource project about that just in plan phase , like web based web services scanner the one will give the wsdl address and my engine will scan the services..Sourceforge will be the address soon..