|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Web Browser For Penetration Test
From: Richard M. Smith (rms
computerbytesman.com)
Date: Sun Apr 09 2006 - 09:23:11 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Here's the IE tool that I use:
http://www.fiddlertool.com/fiddler/
Fiddler is a HTTP Debugging Proxy which logs all HTTP traffic between your
computer and the Internet. Fiddler allows you to inspect all HTTP Traffic,
set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler is
designed to be much simpler than using NetMon or Achilles, and includes a
simple but powerful JScript.NET event-based scripting subsystem.
Its biggest limitation is that it doesn't do HTTPS.
Richard
-----Original Message-----
From: nimdA [mailto:nimda1gmail.com]
Sent: Saturday, April 08, 2006 6:47 AM
To: webappsecsecurityfocus.com
Subject: Web Browser For Penetration Test
Dear All
I'm looking for web browser that help me in penetration testing of web
applications, there are a lot of scanning tools, but I'm looking for a basic
web browser which allow me to control all the data that send to or receive
from the web server.
There are some grate tools like minibrowser, but with complex application it
did not work fine unless you use "Internet Explorer" as a browser, and you
will lose the benefits of this browser.
Unfortunately, I can't find other browser that does the same thing.
What I'm looking for is a simple application, before send or receiving any
value from the web server asks the user to confirm that data that will send
or will receive, not more then that.
So, If any one know some software or IE plug-in or client proxy that will
help me on this, please send it.
Thanks.
-------------------------------------------------------------------------
Sponsored by: Watchfire
Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. Change the way you
think about application security testing - See for yourself.
Download a Free Trial of AppScan 6.0 today!
https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------
-------------------------------------------------------------------------
Sponsored by: Watchfire
Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. Change the way you
think about application security testing - See for yourself.
Download a Free Trial of AppScan 6.0 today!
https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]