Hosting Provided By

RE: Website "Scanner"

From: Ian Griffiths <ian.griffiths(at)liv-coll.ac.uk>
Date: Sat Jan 11 2003 - 12:23:53 EST

What about some Perl arrays and trusty old wget?

-----Original Message-----
From: backed.up.by.2048.bit.encryption@hushmail.com [mailto:backed.up.by.2048.bit.encryption@hushmail.com] Sent: 08 January 2003 23:22
To: sullo@cirt.net
Cc: webappsec@securityfocus.com; vuln-dev@securityfocus.com Subject: Re: Website "Scanner"

-----BEGIN PGP SIGNED MESSAGE----- On Wed, 08 Jan 2003 14:21:16 -0800 sullo@cirt.net wrote:

>2) take all the files an mix them with all the directories from
>the scan
>database, so that:
> /dir1/file1.html
> /dir2/file2.html
> /dir3/file3.html
> turns into requests for
> /dir1/file1.html
> /dir1/file2.html
> /dir1/file3.html
> /dir2/file1.html
> /dir2/file2.html
> /dir2/file3.html
> /dir3/file1.html
> /dir3/file2.html
> /dir3/file3.html
>

Yes, this is more the idea. We are not looking for vulns. or xploits, rather trying to intelligently "guess" what else is in that directory. Either through dictionary use or other use. Received on Sat Jan 11 12:26:27 2003

This message: [ Message body ]
Next message: Kevin Spett: "Re: Website "Scanner""
Previous message: Zed A.Shaw: "Re: Web single sign-on"
In reply to: backed.up.by.2048.bit.encryption(at)hushmail.com: "Re: Website "Scanner""
Next in thread: Mike Shaw: "Re: Website "Scanner""

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:47 EDT