导航

Web安全手册

业精于勤而荒于嬉 行成于思而毁于随

« 犀利的 oracle 注入技术Wordpress Plugin st_newsletter (stnl_iframe.php) SQL Injection Vuln »

OWASP WebScarab Series

http://yehg.net/lab/pr0js/training/webscarab.php
http://www.owasp.org/index.php/Category:OWASP_WebScarab_Project

OWASP WebScarab Series

  1. Spidering
    Description: See how you generate web site tree with WebScarab's Spidering Engine.

     
  2. Finding Hidden Clues
    Description: This is a WebGoat's lesson: Discovering Clues in HTML Comments using WebScarab's Fragments Engine.

     
  3. Session Analysis
    Description: See how WebScarab is of great help in analyzing the stregth of Session using its SessionID Analysis Engine.

     
  4. XSS Hunting
    Description: See how WebScarab is of great help in hunting for low hanging XSS using its XSS/CRLF Engine.

     
  5. Dir Enumeration
    Description: See how WebScarab is of great help in enumerating hidden directories using its Fuzzer Engine.

     
  6. Backups Enumeration
    Description: See how WebScarab is of great help in enumerating backup files and directories using its Extension Engine. 

     WebScarab

 

本作品采用知识共享署名-非商业性使用-相同方式共享 2.5 中国大陆许可协议进行许可。
请大家帮忙:行文措辞难免有错,请大家在阅读时发现错误通过评论方式告诉我。谢谢大家


原创文章如转载,请注明:转载自Web安全手册 [ http://www.pcsec.org/ ]

本文链接地址:http://www.pcsec.org/archives/OWASP-WebScarab-Series.html
发布 / Trace
网站 / Web安全手册 http://www.pcsec.org/

发表评论:

◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。

Powered By Z-Blog .Theme from Google黑板报 By Washun

Copyright 2008-2009 Pcsec.org. Some Rights Reserved.苏ICP备08110306号