Penetration Testing mailing list archives
Re: looking for a HTTPS redirect tool
From: Rogan Dawes <lists () dawes za net>
Date: Tue, 31 May 2005 19:26:25 +0200
Rajeev Kapoor wrote:
i am looking for a HTTPS redirect tool, not a proxy.i need to test a web based application, it communicates via port 443 only and doesnot have option of specifying the proxy server, only server ip address can be given.i want a redirect tool that will accept connections onssl and forward it to the web server, it should itself act like a web server not a proxy server. i could have achived it via Cain arp posioning but i need to edit the data alsoanybody know of such tool? thanks, rajeev
Sorry about coming late to this party. WebScarab has this exact functionality.Configure WebScarab in reverse-proxy mode, by supplying a "base URL" when creating the proxy listener. e.g. "https://www.example.com:443/"
Any request like "GET /resource HTTP/1.0" will then be appended to the supplied base (https://www.example.com:443/resource), and will be requested from the specified server. You then have all the WebScarab intercept and BeanScripting goodness for modifying your requests and responses as desired.
Let me know if you have any questions or problems getting this to work. Regards, Rogan http://www.owasp.org/software/webscarab.html
Current thread:
- looking for a HTTPS redirect tool Rajeev Kapoor (May 23)
- Re: looking for a HTTPS redirect tool Haroon Meer (May 24)
- Re: looking for a HTTPS redirect tool Diego Kellner (May 24)
- Re: looking for a HTTPS redirect tool Martin Mačok (May 24)
- Re: looking for a HTTPS redirect tool jkowall (May 24)
- Re: looking for a HTTPS redirect tool Rogan Dawes (May 31)
- <Possible follow-ups>
- RE: looking for a HTTPS redirect tool Harry Penner (May 24)
- Re: looking for a HTTPS redirect tool Roman Medina-Heigl Hernandez (May 24)