Re: HTTPS Web site testing

From: Pablo Sisca (psisca_at_cisiar.org)
Date: 05/15/03

  • Next message: Alexandre Carmel-Veilleux: "Re: HTTPS Web site testing" 
    To: <Pen-Test@securityfocus.com>
Date: Thu, 15 May 2003 15:33:38 -0300

    Smith:

    You can use Sleuth 1.36 (free) and a good one for Linux, that=
     acts
    like a proxy (with ssl also) HTTPPUSH.
    The links you can find them on the fyodor's site (nmap) 75 tools.=
     
    (www.insecure.org)

    Bye

    P Sisca

    On Thu, 15 May 2003 11:31:27 -0600, Robert Smith wrote:
    >I apologize if this is a simple question.
    >I am testing a HTTPS web site for a vulnerability and need to do a
    >"POST
    >/blah.html /etc...." command and get the results back.
    >I have tried using IE with Achilles, but IE prepends a GET before
    >the POST
    >which invalidates the result. Opera works the same.
    >Is there a way to do this through Achilles or another proxy or any
    >other
    >method so I can examine the web page output?
    >
    >
    >R Smith
    >
    >---------------------------------------------------------------------
    >------
    >*** Wireless LAN Policies for Security & Management - NEW White
    >Paper ***
    >Just like wired networks, wireless LANs require network security
    >policies
    >that are enforced to protect WLANs from known vulnerabilities and
    >threats.
    >Learn to design, implement and enforce WLAN security policies to
    >lockdown enterprise WLANs.
    >
    >To get your FREE white paper visit us at:
    >http://www.securityfocus.com/AirDefense-pen-test
    >---------------------------------------------------------------------
    >-------
    >

    ---------------------------------------------------------------------------
    *** Wireless LAN Policies for Security & Management - NEW White Paper ***
    Just like wired networks, wireless LANs require network security policies
    that are enforced to protect WLANs from known vulnerabilities and threats.
    Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

    To get your FREE white paper visit us at:
    http://www.securityfocus.com/AirDefense-pen-test
    ----------------------------------------------------------------------------

  • Next message: Alexandre Carmel-Veilleux: "Re: HTTPS Web site testing"

    Relevant Pages

    • RE: A question for the list...
      ... >> evolution of the network ... implement and enforce WLAN security policies ... >> enterprise WLANs. ... implement and enforce WLAN security policies to ...
      (Incidents)
    • RE: IIS/WebDav Exploit List
      ... wireless LANs require network security policies ... that are enforced to protect WLANs from known vulnerabilities and threats. ... To get your FREE white paper visit us at: ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)
    • Re: [ANNOUNCE] protocol watcher
      ... attack, which is known to be a SYN attack! ... wireless LANs require network security policies ... > that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)
    • RE: HTTPS Web site testing
      ... Subject: HTTPS Web site testing ... wireless LANs require network security policies ... that are enforced to protect WLANs from known vulnerabilities and threats. ... implement and enforce WLAN security policies to lockdown ...
      (Pen-Test)
    • Re: A question for the list...
      ... Just like wired networks, wireless LANs require network security policies ... implement and enforce WLAN security policies to lockdown enterprise WLANs. ...
      (Incidents)