|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Web Browser For Penetration Test
From: pagvac (unknown.pentester
gmail.com)
Date: Sun Apr 09 2006 - 06:59:28 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mozilla Firefox with all its powerful extensions is all you need
[https://addons.mozilla.org/firefox/extensions/].
Some extensions I recommend you:
- live HTTP headers (HTTP traffic manipulation tool)
- tamper data (same thing but different interface)
- showIP (shows IP of target web server on status bar)
- Header Monitor (monitor headers on status bar - useful to monitor
the "Server" header)
- Leet Key (encode, decode, encrypt, decrypt and generate hashes of
popular types)
- Web developer (useful to populate form fields with dummy data and
remove field restrictions)
- Proxy Button (proxy manager - useful if you need to use Tor to
imitate "anonymous" attacks)
Hope that helps.
On 4/8/06, nimdA <nimda1gmail.com> wrote:
> Dear All
>
> I'm looking for web browser that help me in penetration testing of web
> applications, there are a lot of scanning tools, but I'm looking for a
> basic web browser which allow me to control all the data that send to
> or receive from the web server.
>
> There are some grate tools like minibrowser, but with complex
> application it did not work fine unless you use "Internet Explorer" as
> a browser, and you will lose the benefits of this browser.
>
> Unfortunately, I can't find other browser that does the same thing.
> What I'm looking for is a simple application, before send or receiving
> any value from the web server asks the user to confirm that data that
> will send or will receive, not more then that.
>
> So, If any one know some software or IE plug-in or client proxy that
> will help me on this, please send it.
>
> Thanks.
>
> -------------------------------------------------------------------------
> Sponsored by: Watchfire
>
> Watchfire's AppScan is the industry's first and leading web application
> security testing suite, and the only solution to provide comprehensive
> remediation tasks at every level of the application. Change the way you
> think about application security testing - See for yourself.
> Download a Free Trial of AppScan 6.0 today!
>
> https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
> --------------------------------------------------------------------------
>
>
--
pagvac
[http://ikwt.com]
-------------------------------------------------------------------------
Sponsored by: Watchfire
Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. Change the way you
think about application security testing - See for yourself.
Download a Free Trial of AppScan 6.0 today!
https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]