Re: [WEB SECURITY] Log requests and reply it again automaticall

["Ray Foo" <gunblad3@xxxxxxxxx>]

------=_Part_1_17950063.1200033292136
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

It is possible to write BeanShell scripts for WebScarab to perform what
you're looking for, maybe you could look in that direction?

Ray

On Jan 11, 2008 3:13 AM, Gleb Paharenko <gpaharenko@gmail.com> wrote:

> Hi.
>
> I've been researching a simple task:
>
> record all raw user requests to the server with post data and headers.
> Then repeat them, perhaps modifying some parameters like session id.
> It could be useful to test if some actions which were recorded under
> privileged account is available under unprivileged account.
>
> Tools like Selenium or other browser oriented staff which logs clicks
> to buttons are unusable, because in unprivileged interface this
> buttons could not exists, however direct post to url can work.
>
> I've checked WebScarab, BurpSuite, Paros, w3af (spiderMan plugin)
> and did not found any resoanble solution. Whith first three of them
> I've been able to manually repeat a request, however for site with
> hundreds links is is time consuming.
>
> The only way to how automate this process, was exporting messages from
> Paros. Then some scripting to get requests, modify session id, repeat
> them again to server and scan by eyes though answers. It was several
> times faster
> than manual requests from graphical interface of these tools.
>
> Question:
>  Is it possible to do this simple task with some tool to  minimize
> scripting and not invent a wheel.
>  Is there a good command line XSS,SQLi checker which can read raw
> requests with marked parameters to fuzz (like in burp suite), fuzz the
> url, analyze responces to find problems.
>
> w3af seems a good tool, however I've not run deep inside it yet. If it
> can do all mentioned above stuff, point me please to right plugins.
> Sure that there should be a discover plugin which can just read raw
> request, but I have not found it!
>
> Thanks all.
>
>
> --
> Best regards.
> Gleb Pakharenko.
> http://gpaharenko.livejournal.com
>
>
> ----------------------------------------------------------------------------
> Join us on IRC: irc.freenode.net #webappsec
>
> Have a question? Search The Web Security Mailing List Archives:
> http://www.webappsec.org/lists/websecurity/
>
> Subscribe via RSS:
> http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
>
>

------=_Part_1_17950063.1200033292136
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

It is possible to write BeanShell scripts for WebScarab to perform what you&#39;re looking for, maybe you could look in that direction?<br><br>Ray<br><br><div class="gmail_quote">On Jan 11, 2008 3:13 AM, Gleb Paharenko &lt;
<a href="mailto:gpaharenko@gmail.com";>gpaharenko@gmail.com</a>&gt; wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi.<br><br>I&#39;ve been researching a simple task:
<br><br>record all raw user requests to the server with post data and headers.<br>Then repeat them, perhaps modifying some parameters like session id.<br>It could be useful to test if some actions which were recorded under
<br>privileged account is available under unprivileged account.<br><br>Tools like Selenium or other browser oriented staff which logs clicks<br>to buttons are unusable, because in unprivileged interface this<br>buttons could not exists, however direct post to url can work.
<br><br>I&#39;ve checked WebScarab, BurpSuite, Paros, w3af (spiderMan plugin)<br>and did not found any resoanble solution. Whith first three of them<br>I&#39;ve been able to manually repeat a request, however for site with
<br>hundreds links is is time consuming.<br><br>The only way to how automate this process, was exporting messages from<br>Paros. Then some scripting to get requests, modify session id, repeat<br>them again to server and scan by eyes though answers. It was several
<br>times faster<br>than manual requests from graphical interface of these tools.<br><br>Question:<br>&nbsp;Is it possible to do this simple task with some tool to &nbsp;minimize<br>scripting and not invent a wheel.<br>&nbsp;Is there a good command line XSS,SQLi checker which can read raw
<br>requests with marked parameters to fuzz (like in burp suite), fuzz the<br>url, analyze responces to find problems.<br><br>w3af seems a good tool, however I&#39;ve not run deep inside it yet. If it<br>can do all mentioned above stuff, point me please to right plugins.
<br>Sure that there should be a discover plugin which can just read raw<br>request, but I have not found it!<br><br>Thanks all.<br><br><br>--<br>Best regards.<br>Gleb Pakharenko.<br><a href="http://gpaharenko.livejournal.com"; target="_blank">
http://gpaharenko.livejournal.com</a><br><br>----------------------------------------------------------------------------<br>Join us on IRC: <a href="http://irc.freenode.net"; target="_blank">irc.freenode.net</a> #webappsec
<br><br>Have a question? Search The Web Security Mailing List Archives:<br><a href="http://www.webappsec.org/lists/websecurity/"; target="_blank">http://www.webappsec.org/lists/websecurity/</a><br><br>Subscribe via RSS:<br>
<a href="http://www.webappsec.org/rss/websecurity.rss"; target="_blank">http://www.webappsec.org/rss/websecurity.rss</a> [RSS Feed]<br><br></blockquote></div><br>

------=_Part_1_17950063.1200033292136--