WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Web Browser For Penetration Test

From: Tim Brown <tmb () 65535 com>
Date: Mon, 10 Apr 2006 16:35:57 +0100
On Saturday 08 April 2006 11:46, nimdA wrote:


So, If any one know some software or IE plug-in or client proxy that
will help me on this, please send it.


OWASP's WebScarab.  It has a nice proxy that allows in and outbound monitoring 
and modification of requests.  WebScarab also allows spidering, manipulation 
of web services, session ID analysis, fuzzing, and comparisons/search of 
previous queries.  To my knowledge it is the only proxy that correctly 
handles client side SSL certificates.  You can find it at 
http://www.owasp.org/software/webscarab.html.  

Cheers,
Tim
-- 
Tim Brown
<mailto:tmb () 65535 com>

-------------------------------------------------------------------------
Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web application 
security testing suite, and the only solution to provide comprehensive 
remediation tasks at every level of the application. Change the way you 
think about application security testing - See for yourself. 
Download a Free Trial of AppScan 6.0 today!

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: