Difference between revisions of "Projects/OWASP Web Browser Testing System Project"

From OWASP
Jump to: navigation, search
Line 3: Line 3:
 
| project_home_page = OWASP Web Browser Testing System Project
 
| project_home_page = OWASP Web Browser Testing System Project
  
| project_description =
+
| project_description = WBTS was built to quickly automate and test various browser and user-agents for security issues. It contains all the necessary services required for testing a browser. The following services are included: DNS, HTTP(S), Logging Services and support for VirtualHosts.
  
| project_license =
+
| project_license = [http://www.gnu.org/licenses/gpl.html GNU General Public License v3]
  
 
| leader_name1 = Isaac Dawson  
 
| leader_name1 = Isaac Dawson  

Revision as of 14:28, 17 February 2011

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP Web Browser Testing System Project (home page)
Purpose: WBTS was built to quickly automate and test various browser and user-agents for security issues. It contains all the necessary services required for testing a browser. The following services are included: DNS, HTTP(S), Logging Services and support for VirtualHosts.
License: GNU General Public License v3
who is working on this project?
Project Leader(s):
  • Isaac Dawson @
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: Not Yet Created
Key Contacts
  • Contact Isaac Dawson @ to contribute to this project
  • Contact Isaac Dawson @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
WBTS 1.0 - N/A - (download)
Release description: Currently WBTS is being re-written see: http://code.google.com/p/wbts/ to track it's progress!

WBTS-beta has been used to help researchers find the following bugs:
Chrome:
1. Ability to read cross domain image data using toDataURL and getImageData via createPattern
Opera:
1. Cross-domain checks may be bypassed, allowing limited data theft using CSS
BlackBerry:
1. Waiting for update on CSS Bug...
2. Waiting for update on Header Injection Bug...
3. Waiting for update Same Origin Policy Bypass Bug...

The previous (beta) release license was GNUv3, this has been changed to MIT for the next release.
If you wish to download the BETA release you can get it here: http://code.google.com/p/wbts/downloads/detail?name=wbts.20100924.beta.zip&can=2&q=

Rating: Yellow button.JPG Not Reviewed - Assessment Details
last reviewed release
Not Yet Reviewed


other releases