|
|
RE: Website "Scanner": msg#00020security.vulnerabilities
What about some Perl arrays and trusty old wget? -----Original Message----- From: backed.up.by.2048.bit.encryption@xxxxxxxxxxxx [mailto:backed.up.by.2048.bit.encryption@xxxxxxxxxxxx] Sent: 08 January 2003 23:22 To: sullo@xxxxxxxx Cc: webappsec@xxxxxxxxxxxxxxxxx; vuln-dev@xxxxxxxxxxxxxxxxx Subject: Re: Website "Scanner" -----BEGIN PGP SIGNED MESSAGE----- On Wed, 08 Jan 2003 14:21:16 -0800 sullo@xxxxxxxx wrote: >2) take all the files an mix them with all the directories from >the scan >database, so that: > /dir1/file1.html > /dir2/file2.html > /dir3/file3.html > turns into requests for > /dir1/file1.html > /dir1/file2.html > /dir1/file3.html > /dir2/file1.html > /dir2/file2.html > /dir2/file3.html > /dir3/file1.html > /dir3/file2.html > /dir3/file3.html > Yes, this is more the idea. We are not looking for vulns. or xploits, rather trying to intelligently "guess" what else is in that directory. Either through dictionary use or other use. |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | RE: Website "Scanner": 00020, glyn |
|---|---|
| Next by Date: | Re: Website "Scanner": 00020, Kevin Spett |
| Previous by Thread: | Re: Website "Scanner"i: 00020, Todd Charron |
| Next by Thread: | Re: Website "Scanner": 00020, Mike Shaw |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |