Nmap Development mailing list archives
Re: [NSE] http-useragent-tester.nse
From: Robin Wood <robin () digininja org>
Date: Tue, 30 Jul 2013 23:38:44 +0100
On 30 July 2013 23:33, George Chatzisofroniou <sophron () latthi com> wrote:
Hello Dan, On Sat, Jul 27, 2013 at 10:05:54PM -0500, Daniel Miller wrote:Perhaps the script could be generalized to show the differences in headers (minus the Date header) that are returned given the different user agent strings? This would cover the Location header, as it currently does, but also could cover different HTTP status codes, content length, or other quirks of the server/application.I was experimenting with this idea the last few days. The main problem i encountered was that of many redirections. For example, assume a site that first redirects everything to https and then if it encounters an unsupported User-Agent it redirects the request to a special page. Facebook, Twitter and probably more apps behave like that. So we perform two different requests, one with a valid and one with an unsupported User-Agent header. Notice that on the first request we probably won't have any notable differences on the responses since both requests are just redirected to https. But after that, all the headers are encrypted so we can't perform any comparison. Even if it wasn't the SSL thing, we would have to compare the headers on every single redirection (assuming we have more than one). But i think this is way too complicated for this feature and i'm not even sure it's even possible with the current implementation of http library. If you know any cases of hosts behaving differently (apart from redirecting) based on User-Agents please let me know. Maybe we could tackle these cases in a different manner.
Have you seen this work from Chris John Riley? http://blog.c22.cc/toolsscripts/ua-tester/ In the BruCON talk he gives a lot of examples of hosts that behave oddly based on different user agents. Robin
-- George Chatzisofroniou _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
_______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 25)
- Re: [NSE] http-useragent-tester.nse Paulino Calderon (Jul 26)
- Re: [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 27)
- Re: [NSE] http-useragent-tester.nse Daniel Miller (Jul 27)
- Re: [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 30)
- Re: [NSE] http-useragent-tester.nse Robin Wood (Jul 30)
- Re: [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 30)
- Re: [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 30)
- Re: [NSE] http-useragent-tester.nse George Chatzisofroniou (Jul 27)
- Re: [NSE] http-useragent-tester.nse Paulino Calderon (Jul 26)