WebApp Sec: ASP security in HTML pages

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

WebApp Sec mailing list archives

ASP security in HTML pages

From: Bénoni MARTIN <Benoni.MARTIN () libertis ga>
Date: Tue, 22 Jun 2004 12:42:02 +0100

Hi list,

I have been googling around to know how secure can be ASP code, and I found what follows:
- For a newbee, impossible to get the asp scripts inserted in an HTML page as they are not displayed in the client's 
browser,
- Instead of just letting the ASP code in the HTML pages, we can create some DLLs for example, but a not-to-bad skilled 
hacker can get and reverse them.

So, my question to you, skilled-people :) is: is there a way to get the asp scripts in a page the server does not send 
when a client's request arrives? There should be a way to ^perform that, but how tough is it?

Thanks in advance, folks!

By Date By Thread

Current thread:

ASP security in HTML pages Bénoni MARTIN (Jun 22)
- Re: ASP security in HTML pages Nasir Ghaznavi (Jun 23)
- Re: ASP security in HTML pages Lucas Holt (Jun 23)
- <Possible follow-ups>
- RE: ASP security in HTML pages Wolf, Yonah (Jun 23)
- RE: ASP security in HTML pages Scovetta, Michael V (Jun 24)
  - RE: ASP security in HTML pages Auri Rahimzadeh (Jun 24)