@stake WebProxy 2.1 new release

From: Chris Wysopal (cwysopal@atstake.com)
Date: Fri Apr 25 2003 - 11:45:05 EDT

Next message: Jörg Schütter: "Re: Proof of Concept Tool on Web Application Security"
Previous message: Mark Reardon: "Re: pen-testing an information kiosk (breaking out of the application)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

('binary' encoding is not supported, stored as-is) WebProxy is a web application penetration testing tool that can be run on
Windows, Linux, and Solaris platforms. We have updated WebProxy with
NTLM authentication support, forced browsing for default files,
spidering, and XML form body editing. The urls.xml config file that is
used for forced browsing contains about 1000 checks for Domino, IIS,
ColdFusion, J2EE and other config issues gathered from the @stake pentest
knowledgebase.

More info at http://www.atstake.com/webproxy/

-Chris

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the
world's premier event for IT and network security experts. The two-day
Training features 6 hand-on courses on May 12-13 taught by professionals.
The two-day Briefings on May 14-15 features 24 top speakers with no vendor
sales pitches. Deadline for the best rates is April 25. Register today to
ensure your place. http://www.securityfocus.com/BlackHat-pen-test
----------------------------------------------------------------------------

Next message: Jörg Schütter: "Re: Proof of Concept Tool on Web Application Security"
Previous message: Mark Reardon: "Re: pen-testing an information kiosk (breaking out of the application)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:32 EDT