Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos

Full Disclosure: Re: Browzar Footprints

Re: Browzar Footprints

From: Dave \ <davek_throwaway_at_hotmail.com>
Date: Tue, 5 Sep 2006 14:49:29 +0100

lsi wrote:
> If the user uses Browzar's default search page, it's obvious as hell:
>
> 2xx.206.1x6.1x5 - - [01/Sep/2006:20:49:19 +0100] "GET
> /parvati/ici_bse.htm HTTP/1.1" 200 18754
> "http://www.browzar.com/search/browzar.asp?q=david%20brown%20prion"
> "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

  <evil> Why don't you set your server to automatically 302 any client with
a browzar.com referer header to one of the pages about how useless browzar
is ?

    cheers,
      DaveK

n.b. closing /evil tag omitted on purpose. i plan to stay this way.
muahahahahaaaa! 

-- 
Can't think of a witty .sigline today.... 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Sep 05 2006
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]