Re: [WEB SECURITY] Free tool to analyse and post http request

[RSnake <rsnake@xxxxxxxxxxxx>]

	That's a pretty cool tool that I hadn't seen before, but I much
preferr Burp Suite http://portswigger.net/suite/ because it allows you
to intercept both outbound and inbound requests (which is really useful
when auditing applications that do subversive things in AJAX or Flash
that is otherwise difficult to see.  If you've got Java it will work.
It's worth a download if you haven't played with it.  Just set your
browser to use 8080 and you're off.  Combined with Firefox's switchproxy
tool and it's very easy to use (almost as easy as TamperData).

-RSnake

On Wed, 22 Mar 2006, Bill Pennington wrote:

> My current favorite manual tool to do this is TamperData extension for 
> FireFox
>
> https://addons.mozilla.org/extensions/moreinfo.php?id=966&application=firefox
>
>
> On Mar 22, 2006, at 4:03 PM, Fayyaz Ahmad wrote:
>
> > Can any one recommend a free tool to post http request
> >
> > thanks, Fayyaz
> >
> >
> > Get MSN Messenger with FREE Video Conversation - the next best thing to 
> > being there! 
> > --------------------------------------------------------------------- The 
> > Web Security Mailing List http://www.webappsec.org/lists/websecurity/ The 
> > Web Security Mailing List Archives 
> > http://www.webappsec.org/lists/websecurity/archive/
>
>
> ---
> Bill Pennington, CISSP, CCNA
> VP Services
> WhiteHat Security Inc.
> http://www.whitehatsec.com

---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/