JHijack

From OWASP
Revision as of 10:04, 29 September 2008 by D0ubl3 h3lix (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Description

A simple Java Fuzzer mainly used for numeric session hijacking and parameter enumeration.


Demonstrations

Session Hijacking http://yehg.net/lab/pr0js/files.php/webgoat_sessionman_sessionhijackingwithjhijack.zip

BlindSQLInjection http://yehg.net/lab/pr0js/files.php/webgoat_injectionflaws_blindsqlinjection.zip


Requirements

JRE/JDK 1.4 or above


Download

http://yehg.net/lab/pr0js/files.php/jhijackv0.1beta.zip