Penetration Testing mailing list archives
Re: spidering of webapps
From: "david lodge" <resident.deity () gmail com>
Date: Wed, 8 Oct 2008 11:47:25 +0100
you can use a web proxy such as paros or burp.
One thing I noticed on a recent test: many of the automated spider tools only examine HTML; <A HREF>s; if the website you're assessing uses something freaky like javascript doing: location.href="/newpage.html", or using flash ad nauseam then the spider may not find it. So make sure you manually browse the site first to give the proxy lots of starting points ere you start the spider. ------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------
Current thread:
- spidering of webapps lister (Oct 01)
- RE: spidering of webapps Sol Invictus (Oct 02)
- Re: spidering of webapps kevin horvath (Oct 02)
- Re: spidering of webapps Taufiq Ali (Oct 06)
- Re: spidering of webapps david lodge (Oct 08)
- Re: spidering of webapps Ivan . (Oct 02)
- Re: spidering of webapps natron (Oct 03)
- Re: spidering of webapps Andre Gironda (Oct 05)
- Re: spidering of webapps natron (Oct 03)