[Full-disclosure] AttackAPI (0.7)
pdp (architect)
pdp.gnucitizen at googlemail.com
Fri Sep 15 23:22:22 BST 2006
http://www.gnucitizen.org/projects/attackapi/
Client Enumeration
Server Enumeration
AuthorizationForcer
ExtensionScanner
HistoryDumper
NetworkSweeper
PortScanner
Utils
JavaScriptShell
UsernameScanner
URLScanner
Base64Encoder
+
RequestBuilder
Now it can compose requests, fetch text and binary files, scan for
usernames, scan URLs. This pretty much proves that JavaScript can be
used for quite a lot malicious stuff without breaking the rules.
--
pdp (architect)
http://www.gnucitizen.org
Full-Disclosure is hosted and sponsored by Secunia.