Security Basics mailing list archives

RE: MSIE session cookies

From: Labe Grzegorz DRS-BSI Centrala <G.Labe () GetinBank pl>
Date: Thu, 19 Jan 2006 15:20:02 +0100

On 1/18/06, John Bond <john.r.bond () gmail com> wrote:

Does anyone no of a way i can read MSIE (v6) session cookies and
possibly change them. i.e. where are they stored.  is there a program
which does this already.  is there an API which would allow this


odysseus (tiny proxy server - you can change session cookies in the
interceptor mode):
  http://www.wastelands.gen.nz/odysseus/index.php
  http://www.wastelands.gen.nz/odysseus/interceptor-headers.gif

TamperIE (an IE plugin that allows to intercept POSTs and GETs before they
occur - you can tweak it: change/add POST data):
  http://www.bayden.com/Other/


best regards,
gl
-- 
  GETIN Bank SA
  Departament Rozwoju Systemow Informatycznych
  Katowice, ul. 1go Maja 87
  tel.: 32.7863440




---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

MSIE session cookies John Bond (Jan 20)
- Re: MSIE session cookies Jean-Jacques Halans (Jan 21)
- Re: MSIE session cookies Aman Raheja (Jan 21)
- <Possible follow-ups>
- RE: MSIE session cookies Sebastien Deleersnyder (Jan 21)
- RE: MSIE session cookies Zhou, Joe [HR] (Jan 21)
- RE: MSIE session cookies Labe Grzegorz DRS-BSI Centrala (Jan 21)
- RE: MSIE session cookies veille_audit (Jan 21)