WebApp Sec mailing list archives
Paros v3.0.3 released
From: <contact () proofsecure com>
Date: 18 Dec 2003 15:42:58 -0000
Paros v3.0.3 is now available at http://www.proofsecure.com/download.htm [Brief Introduction] Paros is a man-in-the-middle proxy and application vulnerability scanner. It allows users to intercept and modify HTTP and HTTPS data on-the-fly between web server and client browser. It also supports client-certificate, proxy-chaining, filtering and various vulnerability scanning. [License] - Clarified Artistic License (open source and GPL-compatible license) [New feature] - added new checks for WebLogic (8.1) example files. - added new checks for cache and private IP exposure. - added new checks for parameter tampering. - improved sql injection check on MS SQL. More blind injection checks added. - follow redirected response in scanning. - reduced scanning thread to 5 to ease bandwidth requirement. [Fix] - fixed a bug that may display the wrong test query when a sql injection vulnerability is found. - fixed a problem that the scanner may stop running when scanning those URLs crawled by spider. - fixed a bug in filters LogGetQuery and LogPostQuery Queries, bug reports and comments on Paros can be sent to paros () proofsecure com by ProofSecure.com
Current thread:
- Paros v3.0.3 released contact (Dec 18)