Re: ProxyStrike v2.0 released

[Christian Martorella <cmartorella () edge-security com>]

Hi Adriel,  the objective of the tool is similar to Burpsuite, but  
ProxyStrike have some features that we needed  in the moment we  
started coding that Burpsuite didn't had.

ProxyStrike is open source, it's plugin enabled, and is a tool we  
build based in our needs.

Burpsuite is a great piece of software :)

Any recommendation, or feedback is welcome

Cheers!

Christian Martorella


On Mar 18, 2009, at 3:05 AM, Adriel T. Desautels wrote:

> So you basically wrote burpsuite pro?
>
>
> On Mar 17, 2009, at 6:42 PM, Christian Martorella wrote:
>
> > Im please to announce a new version of ProxyStrike, an active Web  
> > Application Proxy, is a tool designed to find vulnerabilities while  
> > browsing an application. It was created because the problems we  
> > faced in the pentests of web applications that heavily depends on  
> > Javascript, not many web scanners did it good at this stage, so we  
> > came with this proxy.
> >
> > Right now it has available Sql injection, XSS and Server side  
> > includes.
> >
> > Features:
> >
> >         • Plugin engine (Create your own plugins!)
> >         • Request interceptor
> >         • Request diffing
> >         • Request repeater
> >         • Automatic crawl process
> >         • Save/restore session
> >         • Http request/response history
> >         • Request parameter stats
> >         • Request parameter values stats
> >         • Request url parameter signing and header field signing
> >         • Use of an alternate proxy (tor for example ;D )
> >         • Attack logs
> >         • Export results to HTML or XML
> >         * Sql attacks (plugin)
> >         • Server Side Includes (plugin)
> >         • Xss attacks (plugin)
> >
> > Check it at:  http://www.edge-security.com/proxystrike.php
> >
> > Thanks to  Carlos del Ojo for this new release
> >
> > Regards,
> >
> > Christian Martorella
> > ------------------------------------------------------------------------
> > This list is sponsored by: InfoSec Institute
> >
> > Learn all of the latest penetration testing techniques in InfoSec  
> > Institute's Ethical Hacking class.
> > Totally hands-on course with evening Capture The Flag (CTF)  
> > exercises, Certified Ethical Hacker and Certified Penetration  
> > Tester exams, taught by an expert with years of real pen testing  
> > experience.
> >
> > http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> > ------------------------------------------------------------------------
>
>
>
>         Adriel T. Desautels
>         ad_lists () netragard com
>        --------------------------------------
>
>         Subscribe to our blog
>        http://snosoft.blogspot.com


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Learn all of the latest penetration testing techniques in InfoSec Institute's Ethical Hacking class.
Totally hands-on course with evening Capture The Flag (CTF) exercises, Certified Ethical Hacker and Certified 
Penetration Tester exams, taught by an expert with years of real pen testing experience.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------