Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

AW: Forms D2K Application Testing

from [Martin Muench] Network Security [Permanent Link]
Subject: AW: Forms D2K Application Testing
Date: Fri, 18 Apr 2008 09:01:52 +0200 
What do you mean with "doesn't make any sense"?
Can't you see the requests that you send or do you have
Problems when you intercept the response from the server.

It the last cast you might have zip compression enabled in your browser.
You can check this if you remove the line "Accept-Encoding" from your
requests.

Regards

Hans-Martin Münch

-----Ursprüngliche Nachricht-----
Von: iyer.anant.r@gmail.com [mailto:iyer.anant.r@gmail.com] 
Gesendet: Donnerstag, 17. April 2008 16:14
An: pen-test@securityfocus.com
Betreff: Forms D2K Application Testing

Hello,

I need some in carrying out an application penetration testing of a Forms &
D2K applications which are web-enabled. How does on intercept the traffic
(like any HTTP Proxy)? Even though the application is web-enabled, the proxy
I am using (WebScarab) does capture the data, but it does not make any sense
( Am I missing out on some trick here?)

Any help will be  deeply appreciated.

Regards,

Anant Iyer

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • AW: Forms D2K Application Testing, Martin Muench <=
Previous by Date:  RE: Extreme Networks password hash, Jean-Paul Eklo
Next by Date:  Re: Extreme Networks password hash, razi garbie
Previous by Thread:  Forms D2K Application Testing, iyer . anant . r
Next by Thread:  Tutorial on Wireless packet sniffing, Michael Painter
Indexes:  [Date] [Thread] [Top] [All Lists]