Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: Website "Scanner"

Re: Website "Scanner"

From: Mike Shaw <mshaw_at_wwisp.com>
Date: Thu, 09 Jan 2003 09:39:05 -0600

At 03:22 PM 1/8/2003 -0800, backed.up.by.2048.bit.encryption_at_hushmail.com
wrote:
>We want to find out what else might be in "new_products" so we plug in say
>the words "big" "winner" "2003" and let our dictionary spin:
>
> biggerwinner2003.html - nothing
> bigloser2002.html - hit
>
>etc.

I know I'm stating the obvious, but keep in mind that the log files on the
destination box (or on any firewalls that are set to log) are going to be
at least 5 or 6 times the size of your dictionary file, even more if you
use combinations of words like you talk about. Any substantial poking and
prodding and you could fill up a partition or otherwise become obvious real
quick. Webtrends and the like will also flag you.

Don't forget these too:

"Copy%20of%20bigwinner2003.html"
"bigwinner2003.bak"
"bigwinner2003.old"
"bigwinner2003.tmp"

etc...

-Mike
Received on Jan 21 2003

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos