Full Disclosure mailing list archives
Re: CAT Version 1 Released - Web App Testing Tool
From: Valdis.Kletnieks () vt edu
Date: Thu, 04 Aug 2011 10:35:17 -0400
On Thu, 04 Aug 2011 01:45:16 BST, Context IS - Disclosure said:
CAT is a tool for manual web application penetration testing and includes t he following features:
Sounds at least potentially interesting. A few questions:
- CAT uses Internet Explorer's rendering engine for accurate HTML representation
Is this optional/switchable? Might be nice to *not* use the actual IE render engine if you're working on serving up a client-side exploit via XSS - that would be shooting yourself in the foot then. ;)
- MONO Support for Linux and OSX (Currently in Beta).
What render engine does it use for Linux/OSX? Or is this referring to using MONO to talk from a Windows test box to a Linux/OSX target?
- It is totally free!
What license?
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- CAT Version 1 Released - Web App Testing Tool Context IS - Disclosure (Aug 04)
- Re: CAT Version 1 Released - Web App Testing Tool -= Glowing Sex =- (Aug 04)
- Re: CAT Version 1 Released - Web App Testing Tool Valdis . Kletnieks (Aug 04)
- Re: CAT Version 1 Released - Web App Testing Tool Context IS - Disclosure (Aug 09)
- Re: [WEB SECURITY] CAT Version 1 Released - Web App Testing Tool Andre Gironda (Aug 10)
- Re: CAT Version 1 Released - Web App Testing Tool Context IS - Disclosure (Aug 09)