RE: Security tool for monitoring HTTP headers?

To piggy back on Glen's recommendation of Paros...it also includes a simple
report generator and "on-board" scanner that keeps on getting better with
each version i.e. IE Auto-Complete vuls, caching issues, SQL Inj3ction, and
the like.

- lrac


-----Original Message-----
From: Glyn [mailto:glyng@xxxxxxxxxx]
Sent: Tuesday, February 24, 2004 8:18 AM
To: patrick@xxxxxxxxxxxxxxxxxxxxx; webappsec@xxxxxxxxxxxxxxxxx
Subject: RE: Security tool for monitoring HTTP headers?


Try Odysseus or Paros.  They both let you edit the headers and body
directly.

www.wastelands.gen.nz/odysseus/beta/

www.proofsecure.com

> -----Original Message-----
> From: patrick@xxxxxxxxxxxxxxxxxxxxx
> [mailto:patrick@xxxxxxxxxxxxxxxxxxxxx]
> Sent: 24 February 2004 18:06
> To: webappsec@xxxxxxxxxxxxxxxxx
> Subject: Security tool for monitoring HTTP headers?
>
> Does anyone know of a security tool for modifying HTTP
> headers directly?
> For example if I wanted to verify that there was proper input
> validation against some of the data in a POST request, does a
> tool besides Telnet exist?  I was considering creating one
> but I don't want to duplicate someone else's work.
>
> Thanks,
>
> -P
>
>