Penetration Testing mailing list archives

RE: HTTPS Web site testing

From: "Gilbert, Austin" <AGILBERT () sjmc org>
Date: Thu, 15 May 2003 23:21:22 -0500

You could also use curl push the data through Achilles. 
A "curl -d" will POST info and display the results.

--ag

-----Original Message-----
From: Robert Smith [mailto:smithr () IAFACILITY com]
Sent: Thursday, May 15, 2003 12:31 PM
To: 'Pen-Test () securityfocus com'
Subject: HTTPS Web site testing

I apologize if this is a simple question. 
I am testing a HTTPS web site for a vulnerability and need to do a
"POST
/blah.html /etc...." command and get the results back. 
I have tried using IE with Achilles, but IE prepends a GET before the
POST
which invalidates the result. Opera works the same.
Is there a way to do this through Achilles or another proxy or any
other
method so I can examine the web page output?

R Smith

----------------------------------------------------------------------
-----
*** Wireless LAN Policies for Security & Management - NEW White Paper
***
Just like wired networks, wireless LANs require network security
policies 
that are enforced to protect WLANs from known vulnerabilities and
threats. 
Learn to design, implement and enforce WLAN security policies to
lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------
------

IMPORTANT NOTICE:

This message is intended only for the use of the individual or entity
to which it is addressed and may contain information that is
privileged, confidential and exempt from disclosure under applicable
law.  If you have received this message in error, you are hereby
notified that we do not consent to any reading, dissemination,
distribution or copying of this message.  If you have received this
communication in error, please notify the sender immediately and
destroy the transmitted information.

---------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies 
that are enforced to protect WLANs from known vulnerabilities and threats. 
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-pen-test
----------------------------------------------------------------------------

Current thread:

HTTPS Web site testing Robert Smith (May 15)
- Re: HTTPS Web site testing christopher downs (May 15)
- Re: HTTPS Web site testing Edstrom Johan (May 15)
- Re: HTTPS Web site testing Pablo Sisca (May 15)
- Re: HTTPS Web site testing Alexandre Carmel-Veilleux (May 15)
- Re: HTTPS Web site testing JC (May 16)
- <Possible follow-ups>
- Re: HTTPS Web site testing Robert Smith (May 15)
- RE: HTTPS Web site testing Gilbert, Austin (May 16)
- RE: HTTPS Web site testing Dawes, Rogan (ZA - Johannesburg) (May 16)
- RE: HTTPS Web site testing Michael Tsentsarevsky (May 18)