[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [WEB SECURITY] Scripting Question

From: Stephen de Vries <stephen@xxxxxxxxxxxxxxxxxx>
Subject: Re: [WEB SECURITY] Scripting Question
Date: Wed, 14 May 2008 18:10:39 +0200


There are a number of very good "browser drivers" out there, e.g.:

http://watij.sf.net
http://wtr.rubyforge.org/

I wrote up an intro to security testing with watij here: http://www.securebydefault.info/2008/02/15/testing-with-watij/
But Watir is IMO more feature rich and flexible than watij.

Stephen


On May 14, 2008, at 4:10 PM, Dark Con wrote:

This question might be a little offtopic for this list, so please let me know if I should direct it elsewhere.

I'm looking for a way to automate some client-side exploit testing. I want to write a script that loads web pages automatically in a real web browser. I realize that there are multiple other kludges that might do something similar (setting up the RefreshEvery Firefox extension for one), but the goal is to expand this to some other things, as well.

What I'm really looking for is a way to code UI interaction (or some libraries that might help with that). I've found some easy ways to do it in OSX (Automator makes things like this really simple), but was wondering if anyone on the list has ever done anything like this before and might be able to point me to any articles/books about the topic, or recommend which languages might have the best facilities for a project like this.
Thanks.
-DC
----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec
Have a question? Search The Web Security Mailing List Archives:http://www.webappsec.org/lists/websecurity/
Subscribe via RSS:http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA

Follow-Ups:
- Re: [WEB SECURITY] Scripting Question
  - From: romain

References:
- [WEB SECURITY] Scripting Question
  - From: Dark Con

Prev by Date: RE: [WEB SECURITY] Scripting Question
Next by Date: Re: [WEB SECURITY] Scripting Question
Previous by thread: RE: [WEB SECURITY] Scripting Question
Next by thread: Re: [WEB SECURITY] Scripting Question
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site