Cgi-scanner

Printable View

June 22nd, 2004, 11:03 AM
mmkhan

Cgi-scanner

Hi all,

i m writing a cgi-scanner(java) i want to know about that from where will i get the basic architecture for that, how would i do a vulnerability analysis(false positives) and what type of features should one expect in a cgi-scanner.

ur comments in that regard will be quite valuable

Thanks
June 22nd, 2004, 11:48 AM
SirDice

Have a look at Whisker. It's written in Perl so it should be easy to read/understand.

Unfortunately I cannot seem to get on the wiretrip site so I'm pointing you to somewhere else with some short info (including the URL where to get it).

http://www.securiteam.com/tools/3R5QHQAPPY.html
June 22nd, 2004, 12:55 PM
ss2chef

http://www.nessus.org/

Has several CGI specific tests built in.

All times are GMT +1. The time now is 01:01 PM.