[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pen-test
Subject:    [PEN-TEST] Some HTTP proxying code for penetration testing now
From:       Philip Stoev <philip () STOEV ! ORG>
Date:       2001-01-17 19:56:21
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

Please be informed that some proxying code is now available on www
stoev org . Basically, it does the following things:

- - Dump all HTTP traffic, all cookies and all server-strings to a
MySQL database, so that you can index it and run your favorite SQL
statements on it.
- - Allows you (by modifying the code, if you find the relevant part)
to modify any portion of the HTTP communication on-the-fly, including
the short-lived cookies discussed.

The code is very, very, very preliminary and is not reliable at all
and it is ugly, I know. Do not use it instead of your current Squid
installation. Absoultely no warranty is given, use at your own risk.

Good luck and if you download it, you are expected to comment on it.

Philip
pstoev@spidynamics.com

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
Comment: www stoev org

iQA/AwUBOmXcxVi4DH/L1CReEQJ+NwCffulTDS4FXcGMwNYzQ/BNrmChZI0AoLwX
S+NYNQZMTmMA/e55VQ+zYdX2
=Kox+
-----END PGP SIGNATURE-----

[prev in list] [next in list] [prev in thread] [next in thread]