This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "JHijack"

From OWASP

Jump to: navigation, search

Revision as of 15:04, 29 September 2008

Description

A simple Java Fuzzer mainly used for numeric session hijacking and parameter enumeration.

Demonstrations

Session Hijacking http://yehg.net/lab/pr0js/files.php/webgoat_sessionman_sessionhijackingwithjhijack.zip

BlindSQLInjection http://yehg.net/lab/pr0js/files.php/webgoat_injectionflaws_blindsqlinjection.zip

Requirements

JRE/JDK 1.4 or above

Download

http://yehg.net/lab/pr0js/files.php/jhijackv0.1beta.zip

Retrieved from "https://wiki.owasp.org/index.php?title=JHijack&oldid=41386"

Non-OWASP Open Tool