Achim, thanks!
Furthermore it looks like sslyze doesn't support subjectAltName x.509
extension :(
On 05/18/2012 03:34 PM, Achim Hoffmann wrote:
Am 17.05.2012 20:21, schrieb Taras:
[0] http://code.google.com/p/sslyze/
hmm, take care. When I last tested sslyze.py mail.google.com
it does
Stephen,
I've implemented a couple of test scripts for HTTP Parameter
Pollution that you can see here:
http://sourceforge.net/apps/trac/w3af/browser/extras/testEnv/webroot/w3af/audit/hpp
You might find them useful for testing your stuff,
Regards,
On Tue, May 15, 2012 at 7:27 PM,
That's great! Thanks. I was meaning to do this soon and just hadn't gotten
around to it. I'll definitely try these out soon.
As of right now the plugin is pretty simple. All it does is inject into
each parameter in the request (one at a time) and then check the links in
the response to see if the
