Re: Web Browser For Penetration Test

[Justin Clarke <justin () justinclarke com>]

I will most often use whatever browser plus a local proxy (Paros  
[http://www.parosproxy.org] or Burp [http://www.portswigger.net]), or  
use TamperIE (http://www.bayden.com/Other/), which is a plugin to  
Internet Explorer that catches navigation events and allows you to  
edit querystring/post data.

J

On 8 Apr 2006, at 11:46, nimdA wrote:

> Dear All
>
> I'm looking for web browser that help me in penetration testing of web
> applications, there are a lot of scanning tools, but I'm looking for a
> basic web browser which allow me to control all the data that send to
> or receive from the web server.
>
> There are some grate tools like minibrowser, but with complex
> application it did not work fine unless you use "Internet Explorer" as
> a browser, and you will lose the benefits of this browser.
>
> Unfortunately, I can't find other browser that does the same thing.
> What I'm looking for is a simple application, before send or receiving
> any value from the web server asks the user to confirm that data that
> will send or will receive, not more then that.
>
> So, If any one know some software or IE plug-in or client proxy that
> will help me on this, please send it.
>
> Thanks.
>
> ---------------------------------------------------------------------- 
> ---
> Sponsored by: Watchfire
>
> Watchfire's AppScan is the industry's first and leading web  
> application
> security testing suite, and the only solution to provide comprehensive
> remediation tasks at every level of the application. Change the way  
> you
> think about application security testing - See for yourself.
> Download a Free Trial of AppScan 6.0 today!
>
> https://www.watchfire.com/securearea/appscansix.aspx? 
> id=701300000007kaF
> ---------------------------------------------------------------------- 
> ----

Attachment: smime.p7s
Description: