The insecure software is one of the most important technical challenges of our time. The drastic rise in web applications enabling business and social networking has intensified the requirements to establish a strong approach towards securing internet, applications and data. The Open Web Application Security Project (OWASP) Testing Guide has an important role to play in solving the security issues. It is critically important that our approach towards testing software for security issues is based on principles of engineering and science. Based on the OWASP guidelines, Indium has produced its own framework. iAVA, Indium’s Anti-Vulnerability Assessment Framework. This tool helps in performing security test execution, manual test penetration, automated application scanning, code review and analysis, log defects, initiate remediation of defects and complete retesting.