RE: HTTPS Web site testing

From: Gilbert, Austin (AGILBERTat_private)
Date: Thu May 15 2003 - 21:21:22 PDT

Next message: Dawes, Rogan (ZA - Johannesburg): "RE: HTTPS Web site testing"

Previous message: Razvan: "RE: penetration test in a Windows 2000/NT network"
Maybe in reply to: Robert Smith: "HTTPS Web site testing"
Next in thread: Dawes, Rogan (ZA - Johannesburg): "RE: HTTPS Web site testing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

You could also use curl push the data through Achilles. 
A "curl -d" will POST info and display the results.

--ag

-----Original Message-----
From: Robert Smith [mailto:smithrat_private]
Sent: Thursday, May 15, 2003 12:31 PM
To: 'Pen-Testat_private'
Subject: HTTPS Web site testing

I apologize if this is a simple question. 
I am testing a HTTPS web site for a vulnerability and need to do a
"POST
/blah.html /etc...." command and get the results back. 
I have tried using IE with Achilles, but IE prepends a GET before the
POST
which invalidates the result. Opera works the same.
Is there a way to do this through Achilles or another proxy or any
other
method so I can examine the web page output?

R Smith

----------------------------------------------------------------------
-----
*** Wireless LAN Policies for Security & Management - NEW White Paper
***
Just like wired networks, wireless LANs require network security
policies 
that are enforced to protect WLANs from known vulnerabilities and
threats. 
Learn to design, implement and enforce WLAN security policies to
lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------
------

IMPORTANT NOTICE:

This message is intended only for the use of the individual or entity
to which it is addressed and may contain information that is
privileged, confidential and exempt from disclosure under applicable
law.  If you have received this message in error, you are hereby
notified that we do not consent to any reading, dissemination,
distribution or copying of this message.  If you have received this
communication in error, please notify the sender immediately and
destroy the transmitted information.

---------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies 
that are enforced to protect WLANs from known vulnerabilities and threats. 
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------------

Next message: Dawes, Rogan (ZA - Johannesburg): "RE: HTTPS Web site testing"
Previous message: Razvan: "RE: penetration test in a Windows 2000/NT network"
Maybe in reply to: Robert Smith: "HTTPS Web site testing"
Next in thread: Dawes, Rogan (ZA - Johannesburg): "RE: HTTPS Web site testing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri May 16 2003 - 08:40:55 PDT