Penetration Testing mailing list archives

Re: donloading jsp for pen-test

From: "Shreyas Zare" <shreyas () technitium com>
Date: Sat, 12 Apr 2008 13:05:01 +0530

Hi,

You are not understanding what JSP actually is. JSP will be executed
at the webserver and the output of it would always be HTML page that
you download (at client side). Just try to Google for more
information. How can you do pen-testing without knowing any server
technology?

Regards,

On Fri, Apr 11, 2008 at 8:29 PM,  <victorfrankenstein () yahoo com> wrote:

Helo

 I'm currently doing a pen-test against my company site. We have a web application runing over tomcat - in jsp 
format, one of my goals is try to conect to my datebase from internet using my webapp code. I try to download the jsp 
files from web server but when i chek it the file contets is only a html code, for this propose i do it whit linux 
wget, flashget, and others but all ways whit the same result. If any one colud give me any idea about how can i 
downlad the full jsp file i will appreciate a lot.


 Tahnks very much.


 Regards,

 Victor

 ------------------------------------------------------------------------
 This list is sponsored by: Cenzic

 Need to secure your web apps NOW?
 Cenzic finds more, "real" vulnerabilities fast.
 Click to try it, buy it or download a solution FREE today!

 http://www.cenzic.com/downloads
 ------------------------------------------------------------------------




-- 
("Computers are useless. They can only give you answers." - Pablo Picasso)

Shreyas Zare
Co-Founder, Technitium
eMail: shreyas () technitium com

..::< The Technitium Team >::..
Visit us at www.technitium.com
Contact us at theteam () technitium com

Technitium Personal Computers
We believe in quality.
Visit http://pc.technitium.com for details.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

Current thread:

donloading jsp for pen-test victorfrankenstein (Apr 11)
- Re: donloading jsp for pen-test Todd Haverkos (Apr 12)
- Re: donloading jsp for pen-test Shreyas Zare (Apr 12)
- Re: donloading jsp for pen-test Deniz CEVIK (Apr 12)
- <Possible follow-ups>
- Re: donloading jsp for pen-test xx yy (Apr 12)
- Re: donloading jsp for pen-test arvind doraiswamy (Apr 12)