Re: common cookie db?



Hi offset,

I've compiled a document called "cookie_figerprinting".
I put here the cookies I usually found working.

I hope it helps you...





Con fecha martes, 17 de enero de 2006, 16:55:47, escribió:

o> Greetings,

o> Before I re-invent the wheel, I wanted to see if anyone knew of a common known cookie list
o> where someone has already tracked this information.

o> If not, I'll just track my own findings as I do assessments.

o> ie.
o> _utma
o> GMAIL_LOGIN
o> JSESSIONID

o> The goal is to track common cookies to applications (ie. Weblogic, websphere, apache, etc).

o> Thanks,

o> ------------------------------------------------------------------------------
o> Audit your website security with Acunetix Web Vulnerability Scanner:

o> Hackers are concentrating their efforts on attacking applications on your
o> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
o> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
o> futile against web application hacking. Check your website for vulnerabilities
o> to SQL injection, Cross site scripting and other web attacks before hackers do!
o> Download Trial at:

o> http://www.securityfocus.com/sponsor/pen-test_050831
o> -------------------------------------------------------------------------------




--
Saludos,
Ramon mailto:rpinuaga@xxxxxxxxxx
Cookie Fingerprinting

=====================





BEA WebLogic (www.bea.com)
------------

Set-Cookie: WebLogicSession=PLLHV8No5ImB2wUo2mupD49Bdo2HxEXq7OjhAAEl1EP6tMr1KbtI|-2011799079004677001/-1062729195/6/7001/7001/7002/7002/7001/-1|-3433517045111774782/-1062729194/6/7001/7001/7002/7002/7001/-1; path=/


Sane NetTracker (www.sane.com)
---------------

Set-Cookie: SaneID=213.63.123.42-1018349510644; path=/; expires=Tue, 09-Apr-07 06:51:50 GMT; domain=.sane.com


Vignette (www.vignette.com)
--------

Set-Cookie: ssuid=Maxliw00vvM00001fbb6Oxn0wa; path= /; expires=Saturday, 06-Sep-2014 23:50:08 GMT
Set-Cookie: vgnvisitor=Mawd0M00heY0000~fBiFkE0035; path= /; expires=Saturday, 06-Sep-2014 23:50:08 GMT


Microsoft IIS (www.microsoft.com)
-------------

Set-Cookie: ASPSESSIONIDGQQGQYDC=KDGFBFGBLPNCMIIELPAINNJH; path=/


IBM Net.Commerce (www.ibm.com)
----------------

Set-cookie: SESSION_ID=203363,JdjXE+hB9ph06hBJ4NSD04uHsq/FktC/rNib7MJjNS3jk5fXEK9XBtkAx0zI7NkI; path=/;


Netscape Enterprise Server (www.sun.com)
--------------------------

Set-cookie: NSES40Session=2%253A3e57d375%253Adc59172283a7e72c;path=/;expires=Sat, 22-Feb-2003 20:15:57 GMT


iPlanet (www.sun.com)
-------

Set-Cookie: iPlanetUserId=213.23.123.42:29511018555049; EXPIRES=Friday, 31-Dec-2010 23:59:59 GMT; DOMAIN=.iplanet.com; PATH=/


RealMedia OpenAdStream ()
----------------------

Set-Cookie: RMID=d442af2b3d1ccf30; expires=Fri, 31-Dec-2010 23:59:59 GMT; path=/; domain=.xxxx.net


Caucho Resin ()
------------

Set-Cookie: JSESSIONID=afbx7QRlFZje; path=/


Jakarta Tomcat/JSERV (jakarta.apache.org/tomcat/)
--------------------

Set-Cookie: JSESSIONID=4ah34a8xo1;Path=/


Macromedia Jrun (www.macromedia.com)
---------------

Set-Cookie: JSESSIONID=80302068121025709931685;path=/


Roxen Web Server (www.roxen.com)
----------------

Set-Cookie: RoxenUserID=07761bc31df67ae8c4441a89bc7ceed5


ApacheJServ (java.apache.org/jserv)
-----------

Set-Cookie: JServSessionIdroot=vvni7vxu8n; path=/


IBM Tivoli Policy Director WebSeal (www.ibm.com)
----------------------------------

Set-Cookie: PD-S-SESSION-ID=2_L7kl8vzZ9b8LMEwpm0PgqqQRIh2ZZakRamBlgvMXqIIAABDZ; Path=/; Secure


WEBTRENDS ()
---------

Set-Cookie: WEBTRENDS_ID=223.53.123.13-1091519275.658578; expires=Fri, 31-Dec-2010 00:00:00 GMT; path=/


IBM WebSphere ()
-------------

Set-Cookie: sesessionid=ZJ0DMWIAAA51VQFI50BD0VA;Path=/


Sun Java System Application Server (Netscape/iPlanet Applicaton Server)
-----------------------------------------------------------------------

Set-Cookie: gx_session_id_=f42d0282513ff402; path=/


OpenMarket/FatWire Content Server (www.fatwire.com)
---------------------------------

Set-Cookie: SS_X_CSINTERSESSIONID=0001P73k2FUEYEU4Ks5TtKxcs2K:vv0b9pej; path=/
Set-Cookie: CSINTERSESSIONID=0001xquPwAx2NFUFvi7yw-43f35:vv7sdeqs;Path=/


Siebel CRM
----------

Set-Cookie: _sn=u3YBSdYfaf0oa5H1hz7Tc0ccApc0T1Iz60QWgeSiMEA_; Version=1; Path=/

------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------


Relevant Pages

  • RE: Penetration test of 1 IP address
    ... You could use a whole sleth of tools on some server, ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Check your website for vulnerabilities to SQL injection, ... Up to 75% of cyber attacks are launched on shopping ...
    (Pen-Test)
  • Re: ARP Spoofing and Routing
    ... I would like to know how to go abt spoofing arp caches, ... >What I was trying to do was arpspoof a server so that I could intercept ... Up to 75% of cyber attacks are launched on shopping carts, forms, ... Check your website for ...
    (Pen-Test)
  • RE: ARP Spoofing and Routing
    ... It's pretty nice and very easy to use once you figure out the arp spoofing piece. ... >What I was trying to do was arpspoof a server so that I could intercept ... Up to 75% of cyber attacks are launched on shopping carts, forms, ... Check your website for ...
    (Pen-Test)
  • RE: database server audit tools
    ... For ongoing audit accountability and regulatory compliance via log ... Subject: database server audit tools ... please send me also some links to harden my database server from attacks.. ... Audit your website security with Acunetix Web Vulnerability Scanner: ...
    (Pen-Test)
  • Re: Re: database server audit tools
    ... Subject: database server audit tools ... please send me also some links to harden my database server from attacks.. ... Hackers are concentrating their efforts on attacking applications on your website. ...
    (Pen-Test)