This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Phoenix/Tools"
| Line 5: | Line 5: | ||
<br/ > | <br/ > | ||
Burp - http://www.portswigger.net/<br/ > | Burp - http://www.portswigger.net/<br/ > | ||
| − | Paros<br/ > | + | Paros - http://www.parosproxy.org/<br/ > |
| − | Fiddler<br/ > | + | Fiddler - http://www.fiddlertool.com/<br/ > |
Web Proxy Editor<br/ > | Web Proxy Editor<br/ > | ||
Pantera<br/ > | Pantera<br/ > | ||
| Line 21: | Line 21: | ||
WhiteAcid's XSS Assistant - http://www.whiteacid.org/greasemonkey/<br/ > | WhiteAcid's XSS Assistant - http://www.whiteacid.org/greasemonkey/<br/ > | ||
<br/ > | <br/ > | ||
| − | <b>HTTP | + | <b>HTTP testing</b><br/ > |
Torture.pl Home Page - http://stein.cshl.org/~lstein/torture/<br/ > | Torture.pl Home Page - http://stein.cshl.org/~lstein/torture/<br/ > | ||
JoeDog's Seige - http://www.joedog.org/JoeDog/Siege/<br/ > | JoeDog's Seige - http://www.joedog.org/JoeDog/Siege/<br/ > | ||
| + | OPEN-LABS: metoscan (http method testing) - http://www.open-labs.org/ | ||
<br/ > | <br/ > | ||
<b>HTTP server/error fingerprinting</b><br/ > | <b>HTTP server/error fingerprinting</b><br/ > | ||
| Line 31: | Line 32: | ||
TamperIE - http://www.bayden.com/Other/<br/ > | TamperIE - http://www.bayden.com/Other/<br/ > | ||
isr-form - http://www.infobyte.com.ar/development.html<br/ > | isr-form - http://www.infobyte.com.ar/development.html<br/ > | ||
| + | TamperData - http://tamperdata.mozdev.org/<br/ > | ||
| + | Modify Headers - http://modifyheaders.mozdev.org/<br/ > | ||
<br/ > | <br/ > | ||
| + | <b>Cookie editing / poisoning</b><br/ > | ||
| + | CookieSpy - http://www.codeproject.com/shell/cookiespy.asp<br/ > | ||
| + | <br/ > | ||
| + | <b>Ajax and XHR scanning</b><br/ > | ||
| + | Sprajax - http://www.denimgroup.com/sprajax.html<br/ > | ||
| + | <br/ > | ||
| + | <b>SQL injection scanning</b><br/ > | ||
| + | 0x90.org: home of Absinthe, Mezcal, etc - http://0x90.org/releases.php | ||
Revision as of 01:43, 15 January 2007
LiveCD
Sunday, January 14, 2007 6:54 AM 817811456 AOC_Labrat-ALPHA-0008.iso - http://www.packetfocus.com/hackos/
HTTP proxying / editing
Burp - http://www.portswigger.net/
Paros - http://www.parosproxy.org/
Fiddler - http://www.fiddlertool.com/
Web Proxy Editor
Pantera
Suru
httpedit
Charles
Odysseus
RSnake's XSS cheat sheet based-tools and encoding tools
HTMangLe - http://www.fishnetsecurity.com/Tools/HTMangLe/publish.htm
JBroFuzz - http://sourceforge.net/projects/jbrofuzz
[ZIP] XSSFuzz - http://ha.ckers.org/fuzzer/XSSFuzz.zip
WhiteAcid's XSS Assistant - http://www.whiteacid.org/greasemonkey/
HTTP testing
Torture.pl Home Page - http://stein.cshl.org/~lstein/torture/
JoeDog's Seige - http://www.joedog.org/JoeDog/Siege/
OPEN-LABS: metoscan (http method testing) - http://www.open-labs.org/
HTTP server/error fingerprinting
Net-Square: httprint - http://net-square.com/httprint/
Browser-based HTTP tampering / editing
TamperIE - http://www.bayden.com/Other/
isr-form - http://www.infobyte.com.ar/development.html
TamperData - http://tamperdata.mozdev.org/
Modify Headers - http://modifyheaders.mozdev.org/
Cookie editing / poisoning
CookieSpy - http://www.codeproject.com/shell/cookiespy.asp
Ajax and XHR scanning
Sprajax - http://www.denimgroup.com/sprajax.html
SQL injection scanning
0x90.org: home of Absinthe, Mezcal, etc - http://0x90.org/releases.php
