Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: Web Browser For Penetration Test

Re: Web Browser For Penetration Test

From: Tim Brown <tmb_at_65535.com>
Date: Mon, 10 Apr 2006 16:35:57 +0100

On Saturday 08 April 2006 11:46, nimdA wrote:

> So, If any one know some software or IE plug-in or client proxy that
> will help me on this, please send it.

OWASP's WebScarab. It has a nice proxy that allows in and outbound monitoring
and modification of requests. WebScarab also allows spidering, manipulation
of web services, session ID analysis, fuzzing, and comparisons/search of
previous queries. To my knowledge it is the only proxy that correctly
handles client side SSL certificates. You can find it at
http://www.owasp.org/software/webscarab.html.

Cheers,
Tim 

-- 
Tim Brown
<mailto:tmb_at_65535.com>
-------------------------------------------------------------------------
Sponsored by: Watchfire
Watchfire's AppScan is the industry's first and leading web application 
security testing suite, and the only solution to provide comprehensive 
remediation tasks at every level of the application. Change the way you 
think about application security testing - See for yourself. 
Download a Free Trial of AppScan 6.0 today!
https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------
Received on Apr 10 2006
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos