SPIKE Proxy 1.3 Release Announcement~

[dave () immunitysec com (Dave Aitel)]

--=-LDpYyi3oXgf4AWectD71
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Immunity, Inc. is proud to announce the release of SPIKE Proxy version
1.3. SPIKE Proxy is an award winning web application auditing tool that
can perform the following important checks for a web developer:
o SQL Injection
o Directory scanning
o File Scanning
o Crawling
o Overflows and format strings

In addition, SPIKE Proxy provides the application auditor or developer a
powerful form rewriting utility for manual analysis, and a complete data
store of all web analysis activity.

SPIKE Proxy is an Open Source (GPL) contribution to the community.

Download now from http://www.immunitysec.com/spike.html

Dave Aitel
Media and Public Relations
Immunity, Inc.


Changelog below is also available from
http://www.immunitysec.com/SPIKEPROXYCHANGELOG.txt
1.3
Sep 26, 2002
Crawling
   o added form parser
   o added rawparser for when SGML parser fails
   o caught SGML parser failing exception nicely
   o removed If- headers when crawling
   o revitalized core logic to work better against various test pages
   o don't forget that crawling MUST start from a page - so to initiate
     it go to a page and then you'll see the crawl option
Core engine
   o handles chunked responses much better
   o handles all responses better in general - many fixes to spkproxy.py
     If a page doesn't work now, I'd like to know about it
   o Fixed servers that close sockets even if I have keep-alive on
   o added deletion of headers to header API
UI
   o Added stop-all-actions and start-actions to enable a user to stop a
runaway argscan or dirscan or overflow or crawl
     To use this, just click on stop while the action is happening, and
then later click on start again to enable
     automatic functionality
   o Added dirscan - to use this go to the root of where you want to
start your scan
     o file extention scan looks for file.bak, file~, etc
     o directory scan looks for common directories. I have a long list
in words, and if this is
       too long for you, replace words with shortwords and retry your
dirscan
   o Added time to logging information, and extended logging information
fields to 1500.
   o Slowed log page refresh to 25 seconds (you can always click refresh
to get it immediately)



--=-LDpYyi3oXgf4AWectD71
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQA9k0S0B8JNm+PA+iURAtW2AJ9KqBohK1EuNompPkA0bS+7Lu71yQCg3n0c
KehY7Sp5RKnxIZknqrGJJpk=
=P6hV
-----END PGP SIGNATURE-----

--=-LDpYyi3oXgf4AWectD71--