SOURCE Barcelona
BruCON
EuroTrashSecurity Website
«  
  »

ProxyStrike

Today, EdgeSecurity released a new tool: ProxyStrike. Like the WebScarab project supported by OWASP, its a web application proxy which will help you to find potential vulnerabilities in your web applications (don’t use it on third parties sites without the owner acknowledgement).

Once started, it acts as a normal proxy: configure your browser to use localhost:8008 (this port is configurable) as HTTP proxy and visit your preferred web sites. If you need a proxy to connect to the Internet, no stress, ProxyStrike can be configured to use it.

The console window provides a lot of useful information: connections history, URLs, methods and variables. But the most important configuration tab is the Attacks one. Two methods can be enabled: XSS (Cross Site Scripting) and SQL Injection. It becomes very easy to detect vulnerabilities in web applications:
ProxyStrike Interface
Two versions are available: for Windows and for Linux/OSX. A nice tool for pentesters.

April 1st, 2008 | Tags: , | Category: Security, Software | Leave a comment

Leave a Reply

 

 

 

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)

What's the sum of 12 and 3 ?
Please leave these two fields as-is: