Penetration Testing mailing list archives
Re: Any special tool for testing a web chat application?
From: Rogan Dawes <lists () dawes za net>
Date: Thu, 05 Feb 2009 10:56:59 +0200
Barry Archer wrote:
I need to test a web chat application. I was wondering if there's any recommendations on a special tool and/or approach that might be the best. Right now I'm looking at: Nessus A full web application scanner (HP/SPI,AppsScan,or Cenzic) A proxy for manual testing (WebScarab, Paros, etc) Sorry if this is a silly question, but chat seems like it's smaller in scope but harder for that initial automated scan. Thanks Ba
For what it is worth, when testing AJAXy web apps, you probably want to use a scriptable proxy, as you would otherwise be hammered with intercepts every time the script polls for an update. WebScarab supports using BeanShell (or, with a bit of work, your BSF-supported language of choice) to automatically make whatever modifications you choose. Regards, Rogan
Current thread:
- Any special tool for testing a web chat application? Barry Archer (Feb 05)
- Re: Any special tool for testing a web chat application? Rogan Dawes (Feb 05)
- Message not available
- Message not available
- Re: Any special tool for testing a web chat application? Rogan Dawes (Feb 05)
- Re: Any special tool for testing a web chat application? Barry Archer (Feb 10)
- Message not available
- Re: Any special tool for testing a web chat application? Rogan Dawes (Feb 05)