Re: common cookie db?
- From: Ramon Pinuaga Cascales <rpinuaga@xxxxxxxxxx>
- Date: Wed, 18 Jan 2006 19:08:45 +0100
Hi offset,
I've compiled a document called "cookie_figerprinting".
I put here the cookies I usually found working.
I hope it helps you...
Con fecha martes, 17 de enero de 2006, 16:55:47, escribió:
o> Greetings,
o> Before I re-invent the wheel, I wanted to see if anyone knew of a common known cookie list
o> where someone has already tracked this information.
o> If not, I'll just track my own findings as I do assessments.
o> ie.
o> _utma
o> GMAIL_LOGIN
o> JSESSIONID
o> The goal is to track common cookies to applications (ie. Weblogic, websphere, apache, etc).
o> Thanks,
o> ------------------------------------------------------------------------------
o> Audit your website security with Acunetix Web Vulnerability Scanner:
o> Hackers are concentrating their efforts on attacking applications on your
o> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
o> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
o> futile against web application hacking. Check your website for vulnerabilities
o> to SQL injection, Cross site scripting and other web attacks before hackers do!
o> Download Trial at:
o> http://www.securityfocus.com/sponsor/pen-test_050831
o> -------------------------------------------------------------------------------
--
Saludos,
Ramon mailto:rpinuaga@xxxxxxxxxx
Cookie Fingerprinting
=====================
BEA WebLogic (www.bea.com)
------------
Set-Cookie: WebLogicSession=PLLHV8No5ImB2wUo2mupD49Bdo2HxEXq7OjhAAEl1EP6tMr1KbtI|-2011799079004677001/-1062729195/6/7001/7001/7002/7002/7001/-1|-3433517045111774782/-1062729194/6/7001/7001/7002/7002/7001/-1; path=/
Sane NetTracker (www.sane.com)
---------------
Set-Cookie: SaneID=213.63.123.42-1018349510644; path=/; expires=Tue, 09-Apr-07 06:51:50 GMT; domain=.sane.com
Vignette (www.vignette.com)
--------
Set-Cookie: ssuid=Maxliw00vvM00001fbb6Oxn0wa; path= /; expires=Saturday, 06-Sep-2014 23:50:08 GMT
Set-Cookie: vgnvisitor=Mawd0M00heY0000~fBiFkE0035; path= /; expires=Saturday, 06-Sep-2014 23:50:08 GMT
Microsoft IIS (www.microsoft.com)
-------------
Set-Cookie: ASPSESSIONIDGQQGQYDC=KDGFBFGBLPNCMIIELPAINNJH; path=/
IBM Net.Commerce (www.ibm.com)
----------------
Set-cookie: SESSION_ID=203363,JdjXE+hB9ph06hBJ4NSD04uHsq/FktC/rNib7MJjNS3jk5fXEK9XBtkAx0zI7NkI; path=/;
Netscape Enterprise Server (www.sun.com)
--------------------------
Set-cookie: NSES40Session=2%253A3e57d375%253Adc59172283a7e72c;path=/;expires=Sat, 22-Feb-2003 20:15:57 GMT
iPlanet (www.sun.com)
-------
Set-Cookie: iPlanetUserId=213.23.123.42:29511018555049; EXPIRES=Friday, 31-Dec-2010 23:59:59 GMT; DOMAIN=.iplanet.com; PATH=/
RealMedia OpenAdStream ()
----------------------
Set-Cookie: RMID=d442af2b3d1ccf30; expires=Fri, 31-Dec-2010 23:59:59 GMT; path=/; domain=.xxxx.net
Caucho Resin ()
------------
Set-Cookie: JSESSIONID=afbx7QRlFZje; path=/
Jakarta Tomcat/JSERV (jakarta.apache.org/tomcat/)
--------------------
Set-Cookie: JSESSIONID=4ah34a8xo1;Path=/
Macromedia Jrun (www.macromedia.com)
---------------
Set-Cookie: JSESSIONID=80302068121025709931685;path=/
Roxen Web Server (www.roxen.com)
----------------
Set-Cookie: RoxenUserID=07761bc31df67ae8c4441a89bc7ceed5
ApacheJServ (java.apache.org/jserv)
-----------
Set-Cookie: JServSessionIdroot=vvni7vxu8n; path=/
IBM Tivoli Policy Director WebSeal (www.ibm.com)
----------------------------------
Set-Cookie: PD-S-SESSION-ID=2_L7kl8vzZ9b8LMEwpm0PgqqQRIh2ZZakRamBlgvMXqIIAABDZ; Path=/; Secure
WEBTRENDS ()
---------
Set-Cookie: WEBTRENDS_ID=223.53.123.13-1091519275.658578; expires=Fri, 31-Dec-2010 00:00:00 GMT; path=/
IBM WebSphere ()
-------------
Set-Cookie: sesessionid=ZJ0DMWIAAA51VQFI50BD0VA;Path=/
Sun Java System Application Server (Netscape/iPlanet Applicaton Server)
-----------------------------------------------------------------------
Set-Cookie: gx_session_id_=f42d0282513ff402; path=/
OpenMarket/FatWire Content Server (www.fatwire.com)
---------------------------------
Set-Cookie: SS_X_CSINTERSESSIONID=0001P73k2FUEYEU4Ks5TtKxcs2K:vv0b9pej; path=/
Set-Cookie: CSINTERSESSIONID=0001xquPwAx2NFUFvi7yw-43f35:vv7sdeqs;Path=/
Siebel CRM
----------
Set-Cookie: _sn=u3YBSdYfaf0oa5H1hz7Tc0ccApc0T1Iz60QWgeSiMEA_; Version=1; Path=/
------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
- Follow-Ups:
- Re: common cookie db?
- From: Javier Fernandez-Sanguino
- Re: common cookie db?
- References:
- common cookie db?
- From: offset
- common cookie db?
- Prev by Date: New Tool: Windows Permission Identifier v1.0
- Next by Date: Re: Pen testing Fiber Channel
- Previous by thread: common cookie db?
- Next by thread: Re: common cookie db?
- Index(es):
Relevant Pages
|
