Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: session mangment SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
session mangment
how can i catch the session id or the cookie of an application with the user interface developed by silverlight and asp.net framework? or is there another way to test the session management? Anonymous

Have you tried Fiddler? Mike7

43 Posts
Did you have a look at mitmproxy? (mitmproxy.org/)
Redirect the traffic of the user you want to monitor (ex, via ARP poisoning) and intercept all the HTTP(S) traffic.
If you are the application user, you can also also use a classic intercepting proxy like BurpSuite or Zap.
Xme

556 Posts
ISC Handler
Ya mitmproxy.org/ is an awesome site. Anonymous

-
Quoting Anonymous:Ya mitmproxy.org/ is an awesome site.

I also think like you, you also try to assess my website: http://thegioiremviet.com
Thangdesign

1 Posts

Sign Up for Free or Log In to start participating in the conversation!