Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Whether this is about ha.ckers.org, sla.ckers.org or some other project you are interested in or want to talk about, throw it in here to get feedback. 

Current Page: 1 of 1
Results 1 - 11 of 11
6 years ago
andresRiancho
@nullmind: Thanks for your answer! @all: Any other opinions?
Forum: Vendor Talk
6 years ago
andresRiancho
List, For some reason I finally decided to give Acunetix scanner a try, so I opened the very nice (?) CD case they gave me at OWASP with the evaluation version, and installed it in my box. The installation failed (I only tried with wine), and whenever I tried to run it I got a nice "report your bug" window (once again, my fault because I was trying it with wine). So... without bei
Forum: Vendor Talk
6 years ago
andresRiancho
LOL! Never heard about a case like that. Devs are the wierdest ppl =)
Forum: SQL and Code Injection
6 years ago
andresRiancho
In a chat session last week with a w3af contributor, he proposed that w3af should detect if gpc magic quotes is enabled, and save that information to the knowledge base, so it can be used by other plugins. After that, and without really thinking how to implement it, but knowing that it was a good idea, I added a task to the TODO list [0]. Today I finally had some minutes to code a plugin so I star
Forum: SQL and Code Injection
6 years ago
andresRiancho
Hi ! While performing a pentest I found a XSS vuln that I think is un-exploitable. When I request this: http://target/a.php?a=JS-HERE I get the following: ...some html... <script>window.location = "http://...";</script> ...more html... JS-HERE ...some more html... I have tried to inject some code,
Forum: SQL and Code Injection
6 years ago
andresRiancho
lpilorz Wrote: ------------------------------------------------------- > I rather meant crawler configuration, to save time > in case example.com/X.html is rewritten into > example.com/script.php?var=X > For an application with lot of rewriting it's a > must-have scanner feature, otherwise there will be > millions of URL to crawl. Oh, that is a really good feature reque
Forum: Projects
6 years ago
andresRiancho
lpilorz Wrote: ------------------------------------------------------- > Hi, > are you planning to add mod_rewrite support for > w3af in the future? I'm not sure what you mean by this, but w3af can find vulnerabilities in URL filenames, for example, w3af could find a XSS in parameter2, given the following original URL: http://localhost/directoryA/scriptName/parameter1-parameter2
Forum: Projects
6 years ago
andresRiancho
nEUrOO Wrote: ------------------------------------------------------- > andresRiancho Wrote: > -------------------------------------------------- > ----- > > > While Wapiti is moving towards the "more web > > 2.0 > > > support with best parsing support", I see > > Grabber > > > moving towards the "using Qt/C++ will make >
Forum: Projects
7 years ago
andresRiancho
ntp Wrote: ------------------------------------------------------- > andresRiancho Wrote: > -------------------------------------------------- > ----- > > That's what I call a feature request > message! > > =) Going to answer inline: > > Actually I wanted to address some stuff on your > mailing-list and in the presentation that you did > as well,
Forum: Projects
7 years ago
andresRiancho
ntp, That's what I call a feature request message! =) Going to answer inline: ntp Wrote: ------------------------------------------------------- > how about a built-in JSE for ajax crawling, swfrw > integration so it can walk flash, and libexif to > extract/view EXIF metadata? Right now I'm playing with pykhtml, pyxpcom and zc.testbrowser.real to define what is the best
Forum: Projects
7 years ago
andresRiancho
Hi!, Given that this forum is full of web application security experts =), I would like to get some feedback regarding the w3af project [0]. Also, if any of you guys have a feature request, do not hesitate to ask for it via email or in this forum thread. [0] http://w3af.sourceforge.net/ -- Andres
Forum: Projects
Current Page: 1 of 1