RE: Web site testing

From: Jerry Shenk (jshenk_at_decommunications.com)
Date: 04/23/04

  • Next message: Dan Goldberg: "Re: Questions: nmap, nessus unreliability, setting up a packet capture box, using Impacket" 
    To: <dan@madjic.net>, <pen-test@securityfocus.com>
Date: Fri, 23 Apr 2004 12:43:29 -0400

    That does. I've used Achilles to reproduce the 'pathname vulnerability
    issue' with other browsers. My guess is that there are more issues with
    unchecked client data being sent but I need to find one that does more
    than show me a pathname to get the developer to seem to care. I think a
    pathname is a big deal but it doesn't seem to be to them.

    -----Original Message-----
    From: Dan Goldberg [mailto:dan@madjic.net]
    Sent: Friday, April 23, 2004 12:35 PM
    To: Jerry Shenk; pen-test@securityfocus.com
    Subject: Re: Web site testing

    > What are some good web server auditing tools.

    Two tools for working with predictable SessionIDs are OWASP's
    WebScarab (java based) which is a web audit toolkit including an
    interception proxiy, a sitelogger, and a session editor among other
    things. This will allow you to play with any header or the sessionID.
    Another tool that may be useful (though I have not used much yet) is
    an add-on to the Mozilla Firefox browser called MagPie tools. It is
    downloaded from the firefox plug-in page. It can increment and
    decrement digits in the URL (if that is where the session ID is held)
    and some other tricks, YMMV.

    There is also Achilles another interception proxy toolkit. Similar to
    WebScarab but not Java based. It is also a little more stable that
    webscarab which has been updated since I last used it extensively

    I hope this helps some 

    -- 
dan@madjic.net
-- 
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
  • Next message: Dan Goldberg: "Re: Questions: nmap, nessus unreliability, setting up a packet capture box, using Impacket"