JMiddleMan - Web Application security analysis

Contact

Email :
wappsec

Overview

JMiddleMan will be an application vulnerability tool based on EXProxy HTTP/HTTPS proxy server library and on an expert system. It can be use in a passive way in order to preserve the targeted server. It aims to help security experts to detect those kind of security vulnerabilities :

  • Cross-Site scripting
  • SQL Injection
  • Hidden form field manipulation
  • Parameter manipulation
  • Weak Session cookies
  • HTML comments
  • Page Flood
  • HTTP Response splitting
  • Buffer overflow
  • Backdoor and debug options
  • Forceful browsing
  • XML and Web Services vulnerabilities
  • Search engine attack
  • Phishing

News

  • 2005-08-26 : JMiddleman 0.1.1 "BuildingKB - EXProxy impacts"
    • EXProxy API changes and enhancements impacts
    • JMiddleMan is now quite faster
    • Automatic SSL keystore initialization with default values
  • 2005-08-05 : JMiddleman 0.1.0 "BuildingKB"
    • Almost all features are not yet available
    • The goal of the first releases is just to extract security knowledge from internet while building software basis and related tools.
    • Available plugins :
      • Cookies
      • Headers
      • Requests
      • Server signatures

Hit count since 2005-08-05 :

About

© 2005 David Crosson. All rights reserved.