RSS 7 projects tagged "http"

Download No website Updated 07 Jul 2009 Security Filter for Request HTTP Data

Screenshot
Pop 24.41
Vit 1.01

Security Filter for Request Data is a script that can filter SQL injection/XSS/cross-site requests, hex code, and some popular injection commands. By default, it filters $_GET, $_POST, $_COOKIE, and $_REQUEST. Simply include it in the headers of your site files.

Download Website Updated 17 Feb 2010 htrosbif

Screenshot
Pop 23.41
Vit 1.45

htrosbif is a tool that actively probes an HTTP server. It prods the Web server in all sorts of old, new, basic, fancy, spec-compliant, and spec-breaking ways. It tries to characterize both the well-spoken educated responses and the seriously deviant babble it receives in return. Signatures contain no user data, only header names and HTTP-level quirks. As a useful side effect, this might detect reverse proxies, HTTP load balancers, intrusion prevention systems, and Web application firewalls.

No download No website Updated 22 May 2012 LibHTP

Screenshot
Pop 28.28
Vit 39.39

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. That can mean many things, but the only scenario in which LibHTP has been tested so far is the one when you need to parse a duplex HTTP stream that you have obtained by passively intercepting HTTP traffic. Just feed the raw TCP stream to LibHTP and it will do the rest.

No download Website Updated 21 May 2010 Net::Nessus::XMLRPC

Screenshot
Pop 27.71
Vit 2.29

Net::Nessus::XMLRPC is Perl interface for communication with the Nessus scanner over XMLRPC. It lets you start, stop, pause, and resume scans. It can display the progress and status of scans, download reports, etc.

No download No website Updated 21 Nov 2010 skipfish

Screenshot
Pop 64.25
Vit 1.55

skipfish is a high-performance, easy, and sophisticated Web application security testing tool. It features a single-threaded multiplexing HTTP stack, heuristic detection of obscure Web frameworks, and advanced, differential security checks capable of detecting blind injection vulnerabilities, stored XSS, and so forth.

Download Website Updated 01 Feb 2011 httpforge

Screenshot
Pop 23.83
Vit 34.21

httpforge is a set of shell tools that let you manipulate, send, receive, and analyze HTTP messages. These tools can be used to test, discover, and assert the security of Web servers, apps, and sites. An accompanying Python library is available for extensions.

No download Website Updated 01 Mar 2012 sec-wall

Screenshot
Pop 86.68
Vit 1.69

sec-wall is a feature-packed security proxy that supports SSL/TLS, WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes based on custom HTTP headers and XPath expressions, powerful URL matching/rewriting, and an optional header enrichment. It's a security wall with which you can conveniently fence otherwise defenseless backend servers.

Screenshot

Project Spotlight

Pyocr

A simple Python wrapper for OCR engines (Tesseract, Cuneiform, etc.).

Screenshot

Project Spotlight

iSkysoft TunesOver for Mac

Transfer of media files between iDevice and Mac/iTunes.