Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

pen-test logo Penetration Testing mailing list archives

Web Application Penetration Testing Tools
From: Brian E <brian_anon () hotmail com>
Date: 8 Oct 2003 01:24:50 -0000


When performing penetration testing of web applications I have used a minibrowser from www.aignes.com for a very long 
time. 

This simple application allows me to browse a web application and easily see links, form elements, cookies, a log of 
actual commands being sent back and forth and more. The ability to manipulate cookies and form elements makes it very 
useful. 

Unfortunately, it's support as a web browser is limited so I can't test all web applications (such as embeded scripts 
and frames). 

Does anyone know of some other good tools for auditing web applications with the ability to manipulate form data and 
cookies before being sent to the server? 

Preferably, I'm looking for something based on Windows that is browser based (as opposed to proxy based) but am still 
open to all platforms and methods.

---------------------------------------------------------------------------
Tired of constantly searching the web for the latest exploits?
Tired of using 300 different tools to do one job?
Get CORE IMPACT and get some rest.
www.coresecurity.com/promos/sf_ept2
----------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]