Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

webappsec logo WebApp Sec mailing list archives

Re: Web Browser For Penetration Test
From: "Sven Vetsch" <sven.vetsch () disenchant ch>
Date: Sun, 9 Apr 2006 14:02:27 +0200
Hi


So, If any one know some software or IE plug-in or client proxy that
will help me on this, please send it.
If I use the IE for Webapp-Pentests, I use Odysseus [1]. Mostly I use Firefox and if you are also looking for a "Tool" for this Browser, you could use the Tamper Data Extension [2]. 

[1] http://www.wastelands.gen.nz/odysseus/index.php
[2] https://addons.mozilla.org/extensions/moreinfo.php?id=966&application=firefox 

Hope it helps and sorry for my bad English ;)

Disenchant
----- Original Message ----- From: "nimdA" <nimda1 () gmail com> 
To: <webappsec () securityfocus com>
Sent: Saturday, April 08, 2006 12:46 PM
Subject: Web Browser For Penetration Test


Dear All

I'm looking for web browser that help me in penetration testing of web
applications, there are a lot of scanning tools, but I'm looking for a
basic web browser which allow me to control all the data that send to
or receive from the web server.

There are some grate tools like minibrowser, but with complex
application it did not work fine unless you use "Internet Explorer" as
a browser, and you will lose the benefits of this browser.

Unfortunately, I can't find other browser that does the same thing.
What I'm looking for is a simple application, before send or receiving
any value from the web server asks the user to confirm that data that
will send or will receive, not more then that.

So, If any one know some software or IE plug-in or client proxy that
will help me on this, please send it.

Thanks.

-------------------------------------------------------------------------
Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. Change the way you
think about application security testing - See for yourself.
Download a Free Trial of AppScan 6.0 today!

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------

Attachment: smime.p7s
Description:

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]