Showing 1 - 2 of 2

Files Date: 2003-01-31

SP147.tgz: Posted Jan 31, 2003; Authored by Dave Aitel | Site immunitysec.com; SPIKE proxy is a web application analysis tool which uses the SPIKE API to help reverse engineer new and unknown network protocols. Provides security analysis features for Web applications, a multi-threaded design, man in the middle SSL proxying, form rewriting, SQL injection detection, handles Connection: keep-alive properly (it is possible to log in to Hotmail with it), and rewrites User-Agent to pretend to be running IE. Requires pyOpenSSL 0.5.1 from the SPIKE Web page. Several working examples are included. Screenshot available here.; Changes: Internet Explorer compatibility has been fixed, the core engine is more capable against a wider range of web pages and it is now possible to restrict use of the proxy.; tags | web, protocol, sql injection; SHA-256 | 142ae177527d9498126eb4a70b71c1f2642ba5f5f28fd5e7203dd87aadb7b24e; Download | Favorite | View

tomcat-null-byte.txt: Posted Jan 31, 2003; Authored by Jouko Pynnonen | Site klikki.fi; Apache Tomcat can be tricked to disclose files, directory listings and unprocessed JSP files. This issue affects Apache Tomcat version 3.3.1 and earlier. Tomcat users should upgrade to version 3.3.1a.; tags | advisory; SHA-256 | d53725d1e508b8d13aaa142c7e45373e1c4216348fe76af9dc8196021b9abf4b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days