|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Jason Brvenik (jbrvenik
BETRUSTED.COM)Date: Fri Apr 13 2001 - 11:16:41 CDT
you could also use perl and Crypt::SSLeay
-----Original Message-----
From: ET LoWNOISE [mailto:etCYBERSPACE.ORG]
Sent: Thursday, April 12, 2001 10:23 PM
To: PEN-TESTSECURITYFOCUS.COM
Subject: Re: [PEN-TEST] Web site password guessing over SSL
Maybe this can help you
If you need the source code just let me know
http://packetstorm.securify.com/Win/sslcrack.zip
or
http://packetstorm.securify.com/groups/lownoise/
for a short description
bye
Efrain 'ET' Torres
[LoWNOISE]
Gerald wrote:
> Our client wants us to try to brute-force one of their public web sites that
> is password-protected via a form-based login over SSL. I'd rather not have
> to sit by the computer manually typing in passwords over and over again.
> I've looked at the 'popular' web page cracking tools, and none of them seem
> to work over SSL.
>
> Does anybody have any ideas?
>
> Gerald Batten
> Security Consulant
> Exocom
>
> (*note: views expressed in this e-mail are not necessarily those of my
> employer.)
> (**note: views expressed in this e-mail are not necessarily mine either.)
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]