Re: Flash Web Application

On Thu, Jan 28, 2010 at 5:54 AM, John Menerick <john.menerick@xxxxxxxxx> wrote:

Look at the traffic and communications between the flash widget and the web server hosting the widget/site.

How to do it?

I have tried using burpsuite and webscarab as a proxy, but then I
can't click the provided choices on the flash web application.

Any idea?

--
Zaki Akhmad

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Relevant Pages

  • Re: Flash Web Application
    ... An inline proxy like webscarab may help, but another good tools is rat ... It comes with a flash decompiler called flare. ... Can I use webscarab to see what happen on the site? ... Information Assurance Certification Review Board ...
    (Pen-Test)
  • Re: auditing web/mail proxies
    ... Has anyone ever audited a proxy during a pen test/IT audit or as an audit on ... Information Assurance Certification Review Board ... Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. ...
    (Pen-Test)
  • Re: auditing web/mail proxies
    ... Has anyone ever audited a proxy during a pen test/IT audit or as an audit on ... Information Assurance Certification Review Board ... Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. ...
    (Pen-Test)
  • Re: auditing web/mail proxies
    ... Do they allow egress ICMP? ... Does the proxy transparently redirect outbound http requests, ... Information Assurance Certification Review Board ... IACRB CPT and CEPT certs require a full practical examination in order to become certified. ...
    (Pen-Test)
  • Re: Opinions on Burp Suite Web App Scanner
    ... Burp is a great proxy. ... Information Assurance Certification Review Board ... IACRB CPT and CEPT certs require a full practical examination in order to become certified. ...
    (Pen-Test)