Re: HTTPS Web site testing

From: JC (-none-@resnulius.net)
Date: Thu May 15 2003 - 14:44:04 PDT

Next message: Razvan: "RE: penetration test in a Windows 2000/NT network"

Previous message: Robert Smith: "HTTPS Web site testing"
In reply to: Robert Smith: "HTTPS Web site testing"
Next in thread: Gilbert, Austin: "RE: HTTPS Web site testing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Robert,

If you have openssl installed on your system (any Linux should have it by
default and on Windows you can install cygwin that has openssl) you can use
the following command to connect to it, you can then type your post or any
other command and get the replies.

openssl s_client -connect <server>:<port>

Cheers,
Martin

----- Original Message ----- 
From: "Robert Smith" <smithrat_private>
To: <Pen-Testat_private>
Sent: Thursday, May 15, 2003 7:31 PM
Subject: HTTPS Web site testing


> I apologize if this is a simple question.
> I am testing a HTTPS web site for a vulnerability and need to do a "POST
> /blah.html /etc...." command and get the results back.
> I have tried using IE with Achilles, but IE prepends a GET before the POST
> which invalidates the result. Opera works the same.
> Is there a way to do this through Achilles or another proxy or any other
> method so I can examine the web page output?
>
>
> R Smith
>
> --------------------------------------------------------------------------
-
> *** Wireless LAN Policies for Security & Management - NEW White Paper ***
> Just like wired networks, wireless LANs require network security policies
> that are enforced to protect WLANs from known vulnerabilities and threats.
> Learn to design, implement and enforce WLAN security policies to lockdown
enterprise WLANs.
>
> To get your FREE white paper visit us at:
> http://www.securityfocus.com/AirDefense-pen-test
> --------------------------------------------------------------------------
--
>
>
>


---------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies 
that are enforced to protect WLANs from known vulnerabilities and threats. 
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------------

Next message: Razvan: "RE: penetration test in a Windows 2000/NT network"
Previous message: Robert Smith: "HTTPS Web site testing"
In reply to: Robert Smith: "HTTPS Web site testing"
Next in thread: Gilbert, Austin: "RE: HTTPS Web site testing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri May 16 2003 - 08:38:24 PDT