Penetration Testing: Re: HTTPS Web site testing

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Re: HTTPS Web site testing

From: Alexandre Carmel-Veilleux <saruman () northernhacking org>
Date: Thu, 15 May 2003 14:21:07 -0400

On Thu, May 15, 2003 at 11:31:27AM -0600, Robert Smith wrote:


I apologize if this is a simple question. 
I am testing a HTTPS web site for a vulnerability and need to do a "POST
/blah.html /etc...." command and get the results back. 
I have tried using IE with Achilles, but IE prepends a GET before the POST
which invalidates the result. Opera works the same.
Is there a way to do this through Achilles or another proxy or any other
method so I can examine the web page output?


        How about using nc through stunnel? Both are available for Win32
and *nix.

Alex

Attachment: _bin
Description:

By Date By Thread

Current thread:

HTTPS Web site testing Robert Smith (May 15)
- Re: HTTPS Web site testing christopher downs (May 15)
- Re: HTTPS Web site testing Edstrom Johan (May 15)
- Re: HTTPS Web site testing Pablo Sisca (May 15)
- Re: HTTPS Web site testing Alexandre Carmel-Veilleux (May 15)
- Re: HTTPS Web site testing JC (May 16)
- <Possible follow-ups>
- Re: HTTPS Web site testing Robert Smith (May 15)
- RE: HTTPS Web site testing Gilbert, Austin (May 16)
- RE: HTTPS Web site testing Dawes, Rogan (ZA - Johannesburg) (May 16)
- RE: HTTPS Web site testing Michael Tsentsarevsky (May 18)