ASP.NET web services advisory
wschess helped in finding this bug in ASP.NET. Recent finding on ASP.NET is posted on security tracker.
Read Here
posted by shreeraj @ 11:09 PM
wsChess Toolkit
Objective of this blog is to keep track of wschess activities & place holder for knowledge base. It is web services assessment and defense toolkit.
Shreeraj Shah
Founder & Director
n e t - s q u a r e
shreeraj@net-square.com
[My blog]
Download wschess
Previous Posts
- Book - Hacking Web Services
- Releasing 1.5
- Domain footprinting is branched out into MSNPawn
- Releasing beta 1.4
- Releasing beta 1.3
- ASP.NET web services advisory
- Releasing beta 1.2
- [External] Beta 1.1
- [Internal] Beta 1.1 released
- wsChess 1.0 (beta/prototype) - Web Services Assess...
Archives
Tuesday, May 24, 2005
Tuesday, May 17, 2005
Releasing beta 1.2
Changes are as follows
1. Doamin footprinting is added to wspawn. Methodlogy is discussed in paper [Read]
2. wspawn threading is much more controlled now with option to stop.
3. wspawn's command line is also posted which can run under linux with mono.
Planning to add few more audit/attack modules for xpath,xss,ldap etc in wsknight in next release.
posted by shreeraj @ 5:37 AM