WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Version 0.9.5 of WATOBO - The Web Application Toolbox released

From: "WebAppSec" <webappsec () siberas de>
Date: Mon, 25 Oct 2010 11:05:37 +0200
Hi everybody,

we want to announce that we just released version 0.9.5 of WATOBO - The Web
Application Toolbox (http://watobo.sourceforge.net).
WATOBO is intended to enable security professionals to perform highly
efficient (semi-automated) web application security audits. 

== WATOBO Briefing ==
WATOBO works similar to other proxy-based tools, but has some advantages
like:
+ Session Management capabilities
        => You can define login scripts as well as logout signatures. 
        => No need to login manually each time you get logged out. 
+ Perform vulnerability checks out of the box. 
+ Supports Inline De-/Encoding
        => So you don't have to copy strings to a transcoder and back again.
Just do it inside the request/response window with a simple mouse click. 
+ Smart filter functions
        => You can find and navigate to the most interesting parts of the
application easily. 

WATOBO is written in (FX)Ruby and enables you to define your own checks. At
the moment WATOBO is running on Windows, Linux and MacOS.

== News ==
New Features in version 0.9.5:
+ PassThrough for large responses or special content-types Introduced 
+ Plugins Introduced Full logging of Scans Introduced Target-Scope 
+ Introduced Quick-Filter in Sites-Tree-View Introduced 
+ Scope-Filter-Option for conversation table Introduced 
+ Request-Transform (POST->GET) for Manual Requests New Plugin: 
+ Catalog-Scan New Plugin: SSL-Check

== Documentation ==
Watch the video tutorials on our project page for further information
- <http://sourceforge.net/apps/mediawiki/watobo/index.php?title=Videos>

There is also a manual available at Corelan
-
<http://www.corelan.be:8800/index.php/2010/07/23/watobo-the-unofficial-manua
l/>

== Presentations ==
I just presented WATOBO at the OWASP AppSec Germany conference. You can find
the (german) slides here:
-
<http://www.siberas.de/presentations/OWASP_2010_AppSec_Germany-WATOBO_final.
ppt>

Regards,
Andy

-----------------------------------------------------------
Andreas Schmidt
http://www.siberas.de
PGP/FP: 5376 88C2 4DC2 7B9C 7EB6 F3E3 461C EA0A EBBA 1E11
-----------------------------------------------------------





This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: