Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Modifing non-persistent cookies

from [Dean H. Saxe] Network Security [Permanent Link]
Subject: Re: Modifing non-persistent cookies
Date: Sun, 11 Dec 2005 20:51:37 -0500
Paros. Use the filtering options and set a filter to change the value on all request/response streams.

-dhs

Dean H. Saxe, CEH
dean@fullfrontalnerdity.com
"[U]nconstitutional behavior by the authorities is constrained only by the peoples' willingness to contest them"
--John Perry Barlow


On Dec 11, 2005, at 6:31 PM, David Hogue wrote:

There is a Firefox extension that might be able to do this:
https://addons.mozilla.org/extensions/moreinfo.php? application=firefox&category=Developer%20Tools&numpg=10&id=573
I haven't used it for much yet so I can't be sure.

I think Fiddler might be able to do this.  It's a proxy of sorts from
Microsoft.  Though I don't know if that would be an option (it is a
proxy and it only runs on Windows if that is an issue)

On 12/11/05, Jason binger <cisspstudy@yahoo.com> wrote:

I am looking for an application that can modify a
non-persistent cookies value permanently (while the
browser is open).

I am testing a web app where a UserID=Number is set in
the browser. If I change this number to another ID I
can access other users functions, but I don't want to
have to manually change it with each request using a
web proxy.

Does anyone have some other ideas?

Cheers

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com






[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Modifing non-persistent cookies, David Hogue
Next by Date:  Re: Modifing non-persistent cookies, Rogan Dawes
Previous by Thread:  Re: Modifing non-persistent cookies, David Hogue
Next by Thread:  Re: Modifing non-persistent cookies, Rogan Dawes
Indexes:  [Date] [Thread] [Top] [All Lists]