From the category archives:

Penetration Testing

Sniff-n-Spit : man in middle attack for HTTP communications

by Black on March 16, 2010 · 0 comments

in Penetration Testing, Portable, Security Reconnaissance, Security tools, Web Application Penetration Testing

During Penetration testing it can be seen that thick-clients sometimes communicate with a server whose IP address is hardcoded in to it.The HTTP communication between such client and server is harder to intercept and test. Sniff-n-Snip is a very useful utility in such scenarios.It sniffs for HTTP packets from the client to server and forwards [...]

Tagged as: , , ,

{ 0 comments }

UPDATE: sqlmap 0.8 Final!

by Black on March 15, 2010 · 0 comments

in Open Source, Penetration Testing, Security Reconnaissance, Tool Updates, Web Application Penetration Testing

We wrote about sqlmap version 0.8 RC 1 being released here. Now, the author Bernardo Damele A. G. has released the FINAL version!
“sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers. It comes with a broad range of [...]

Tagged as: , , ,

{ 0 comments }

Firebug : A Firefox Plugin for Web Development and Testing!

by Black on March 15, 2010 · 0 comments

in Open Source, Security Reconnaissance, Web Application Penetration Testing

Firebug integrates with Firefox to put a wealth of web development tools at your fingertips while you browse. We have it included in our WAPT Add-on’s list already! You can edit, debug, and monitor CSS, HTML, and JavaScript live in any web page.
Firebug gives you a really fun way to make experimental HTML changes and [...]

Tagged as: , , ,

{ 0 comments }

← Previous Entries