Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: regarding URL Encoding based attacks

from [Alex Russell] Network Security [Permanent Link]
Subject: Re: regarding URL Encoding based attacks
Date: Mon, 1 Nov 2004 11:41:38 -0700 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tuesday 26 October 2004 12:06 am, Mayank Bhatnagar wrote:

I am working towards URL Encoding and Decoding based attacks. A
nice paper could be read from here...

http://www.technicalinfo.net/papers/URLEmbeddedAttacks.html


Agreed. Gunter appears to cover most of the bases here. Nice to see a 
treatment that includes IPv6.


To carry out on ths work, I have implemented a HTTP protocol engine
and I am able to extract a complete URL string. This I am doing
using C++/Unix environment.


What does that mean? What does "extract" mean? And how is this 
different from any other regexp that matches URI schemes (of which 
there are many of varying quality)? What are you extracting from? 
HTTP headers?


Now my question is, I would like to know if there are some
libraries exisiting using which I can decode the captured URLs. I
wish to use the library (preferably in C/C++) and then proceed to
find the attack patterns in them.


Here's where you're starting to get on my nerves. A quick google 
search turns up TONS of urldecoding/encoding routines (again, of 
varying quality). I've you've already searched through these, please 
mention which you've looked at before requesting blankly that the 
members of this list do the most basic research imagineable for you.


Can any one provide some links/references....


http://www.google.com
http://groups.google.com

- -- 
Alex Russell
alex@dojotoolkit.org
alex@netWindows.org F687 1964 1EF6 453E 9BD0 5148 A15D 1D43 AB92 9A46
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (Darwin)

iD8DBQFBhoNioV0dQ6uSmkYRAv1lAJwIGVy2ODJF8CFL2FHqA8cbB2mTpwCfaKm0
qmymficDh7DX2xtdPm4YPPs=
=5Lqc
-----END PGP SIGNATURE-----
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: advice needed - secure transfer of client details, Alex Russell
Next by Date:  RE: advice needed - secure transfer of client details, Scovetta, Michael V
Previous by Thread:  Hacking--do the pros now rule?, Tom
Next by Thread:  Re: regarding URL Encoding based attacks, Mayank Bhatnagar
Indexes:  [Date] [Thread] [Top] [All Lists]