Full Disclosure: Re: CAT Version 1 Released

Nmap Security Scanner
- Intro
- Ref Guide
- Install Guide
- Download
- Changelog
- Book
- Docs
Security Lists
- Nmap Hackers
- Nmap Dev
- Bugtraq
- Full Disclosure
- Pen Test
- Basics
- More
Security Tools
Site News
Advertising
About/Contact
Sponsors:

Re: CAT Version 1 Released - Web App Testing Tool

From: Valdis.Kletnieks () vt edu
Date: Thu, 04 Aug 2011 10:35:17 -0400

On Thu, 04 Aug 2011 01:45:16 BST, Context IS - Disclosure said:

CAT is a tool for manual web application penetration testing and includes t he following features:


Sounds at least potentially interesting.  A few questions:

-          CAT uses Internet Explorer's rendering engine for accurate HTML representation


Is this optional/switchable?  Might be nice to *not* use the actual IE render
engine if you're working on serving up a client-side exploit via XSS - that would
be shooting yourself in the foot then. ;)

-          MONO Support for Linux and OSX (Currently in Beta).


What render engine does it use for Linux/OSX? Or is this referring to using
MONO to talk from a Windows test box to a Linux/OSX target?

-          It is totally free!


What license?

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

CAT Version 1 Released - Web App Testing Tool Context IS - Disclosure (Aug 04)
- Re: CAT Version 1 Released - Web App Testing Tool -= Glowing Sex =- (Aug 04)
- Re: CAT Version 1 Released - Web App Testing Tool Valdis . Kletnieks (Aug 04)
  - Re: CAT Version 1 Released - Web App Testing Tool Context IS - Disclosure (Aug 09)
    - Re: [WEB SECURITY] CAT Version 1 Released - Web App Testing Tool Andre Gironda (Aug 10)