Penetration Testing mailing list archives
Re: [PEN-TEST] Pen-testing a website
From: "Teicher, Mark" <mark.teicher () NETWORKICE COM>
Date: Fri, 22 Dec 2000 09:22:05 -0800
http://www.qualys.com/services/index.htm http://www.atelierweb.com/pscan/index.htm http://www.hoobie.net/brutus/brutus-faq.html http://www.cerberus-infosec.co.uk/cis.shtml <-- they are now @Stake.. :( /m At 06:00 PM 12/22/00 +0530, Charles wrote:
Hi I want to test out the application that my developers have made for an E-Commerce site (E-Commerce meaning transaction-enabled). Essentially to test issues like these: - Mucking around with Cookies/Session IDs to find holes - Ability to hijack sessions - URL sequencing, etc I am looking for an exhaustive list of such cases. Any links, tools, help would be appreciated. Thanks -C
Current thread:
- [PEN-TEST] Pen-testing a website Charles (Dec 22)
- Re: [PEN-TEST] Pen-testing a website Teicher, Mark (Dec 22)
- Re: [PEN-TEST] Pen-testing a website Aviram Jenik (Dec 26)
- Re: [PEN-TEST] Pen-testing a website Teicher, Mark (Dec 22)