Security Basics
web form filling bots Jun 28 2012 04:17PM
Anwar Khan (anwarrhce gmail com) (3 replies)
RE: web form filling bots Jun 28 2012 05:26PM
Nick Schroedl (NSchroedl mullen-group com)
Personally I think that a quick python script with cURL and PyWebLib should
do the trick. You should even be able to use this to stress test. Possibly
(I really don't know) fiddler2 (http://fiddler2.com/fiddler2/) scripting
engine could do it quicker.

Nick

-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On
Behalf Of Anwar Khan
Sent: Thursday, June 28, 2012 10:18 AM
To: security-basics (at) securityfocus (dot) com [email concealed]; pen-test (at) securityfocus (dot) com [email concealed]
Subject: web form filling bots

Dear All,

Can anyone please suggest any web form filling tool, which automate the form
filling process and write bogus entries.
I have a website which i want to test against this, i just want to see how
things work without capthca, if i rely on POST and Connect.

Please suggest any tool or script.

thnks

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate In this guide we
examine the importance of Apache-SSL and who needs an SSL certificate. We
look at how SSL works, how it benefits your company and how your customers
can tell if a site is secure. You will find out how to test, purchase,
install and use a thawte Digital Certificate on your Apache web server.
Throughout, best practices for set-up are highlighted to help you ensure
efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727
d1
------------------------------------------------------------------------

0? *?H?÷
 ?0?1 0 +0? *?H?÷
 ?30?60? 0
 *?H?÷
0o1 0 USE10U
 AddTrust AB1&0$U AddTrust External TTP Network1"0 UAddTrust External CA Root0
000530104838Z
200530104838Z0o1 0 USE10U
 AddTrust AB1&0$U AddTrust External TTP Network1"0 UAddTrust External CA Root0?"0
 *?H?÷
?0?
?·÷3æò-9àN[í¼l͵ú#¶ÎÞ?3?¤)L}??½J¼?íãÏåmPZÖ?)?Z?°IzÛ.?ý¸Ê¿78-
>?A­pVÇðO?è2?tÊȐTéÆ_x?@<¬aª^??¡jPÜ×?N¯³¦q??q³P`
ǝ8?¨é¨i&«L°O#«:O?ØßÎ?áio»×B×kDäÇ­îmA_rZq7³ye¤Y ?7÷/
Â?rÚÐ8rÛ¨EÄ]*}·´ÖÄî¬ÍD·É+ÝC%úa¹ijX#·§3VuYõÍ)×F·
+e¶ÓBo²¸{ûïé]SÕ4Z'£Ü0Ù0U­½?z4´&÷úÄ&Tï½à$ËT0 U
0Uÿ0ÿ0?U#?0??­½?z4´&÷úÄ&Tï½à$ËT¡s¤q0o1 0 USE10U
 AddTrust AB1&0$U AddTrust External TTP Network1"0 UAddTrust External CA Root?0
 *?H?÷
?°?à?%ÂÖ#â??A??Ù?yÙ[#6e°Øw»¬AlG`?Q°ù2=çüö&Ç?¥¿Zü?Ïxy?!?
âL
?5¼òÞQÄÒ?·Ü~Nîpý9ë Q-?½àÁßFuç$­ìôB´??pgº5JÓ+zÌQB¡zcÑ满Å+Â6¾
æ½c~y{§
@«jݏ?Ãöö?BQÔEõ?§b!h C<?ç|½$Ø©?s??V18´q?ÍÈ??.á???Ë1ñDLÆsIv`Çø½?k.éÌLZ?y
.Õ?c&U??Ø?Z{мǏN?0?0?? 4=é+¬'4ÿË4?ûÌpT0
 *?H?÷
0o1 0 USE10U
 AddTrust AB1&0$U AddTrust External TTP Network1"0 UAddTrust External CA Root0
050607080910Z
200530104838Z0®1 0 UUS1 0 UUT10USalt Lake City10U
The USERTRUST Network1!0U http://www.usertrust.com1604U-UTN-USERFirst-Clien
t Authentication and Email0?"0
 *?H?÷
?0?
?²9?¤ò}«A;bF7®ÍÁ`u¼9eùJG¢¹ÌHÌj?ÕM5¹¤BåÎIâ?/|Ò1ÇN´?d.)Õ¢dÄ?½?Q5y¤
Nh{z¤?¨ò?ò?Ìɤ2?» O0½?  ?ån¢Fúx¼¢o«Y^¥/ÏÊÚmª/묡³jª·.g5?yái?âæFÍ ¥ê¾ Îv:z?êüÚ'[=s"æHaÆ
Lói±¨.¶Ô1 ,¼???¤¥×?CüZ¯q×YÚº?
¯úóáÂð¤Åg?ÖÖT:Þ
¤ºw³eÈýÓtbªÊh?¡?~õGeËøMW(tÒ4ÿ0¶îöb0?,룁ô0ñ0U#0?­½?z4´
&÷úÄ&Tï½à$ËT0U??g}ĝ&pK´PH|Þ=®n}0Uÿ0Uÿ
0ÿ0U 
00U 0DU=0;09 7 5?3http://crl.usertrust.com/AddTrustExternalCARoot.crl05
+)0'0%+0?http://ocsp.usertrust.com0
 *?H?÷
?¼?ãc(°ó1Âß{Ýb #1??sSQêLúÖ?ÄÊ/g~x3t¹???õ?&údpØù bP??ÔÚ
õ#Û4»?V´p4nx?7?Å?_?½¬jýñÂÑÌ?_±|ð>Qò5ó|ì`?k:+àïß³}?ëµõ[ì¢|?×P¹Ñ-sÞ
xtá?1^Ë?¹?ƹ?7urÜDûgèðú%R§Ú%éGà Ç< N±
6ûwH?ï??û´þã?¨?¼\-?Ò`q`îÂq? é?6ãÚ ´£ lª?K¸??uÊIö;ºßÜÙ?Ûà²æM x&çç-n_Æ?0?0? mê§Oj3"æ"2zªqÞ
0
 *?H?÷
0®1 0 UUS1 0 UUT10USalt Lake City10U
The USERTRUST Network1!0U http://www.usertrust.com1604U-UTN-USERFirst-Clien
t Authentication and Email0
110428000000Z
200530104838Z0?1 0 UGB10UGreater Manchester10USalford10U
COMODO CA Limited1907U0COMODO Client Authentication and Secure Email CA0?"0
 *?H?÷
?0?
????[KW?Ô^/?¤á@È£SX_feñ2N÷?2}UÐxLU·B?àù'qÅÆi¤¹2Äñ@Ì'Vbµqi®å äËc^`Ê¢Aöjá£ÿ¸ßHmeC?*.+c8wß±¬ÂÚ?ÖÔ2jÔgo \5úåT?¯Øq
7
PSl?©´??Y1ÿ ¢ÒLÜRÛÞâ@[HhÝÅJ´àí$:¯q_㬿;°%qh=ôÖXF<h???mz!Wæ4°Û2~ãJá¥Rrd&?N¥?
ÿà±`ýohQ?c?¥ÌB??}"cÓ© üÎ?ßDô\[5ºó§?ÿÁ£?K0?G0U#0???g
}ĝ&pK´PH|Þ=®n}0UzNt[Æxcd'Á/â [¼yÅ{0Uÿ0Uÿ
0ÿ0U 
00U 0XUQ0O0M K I?Ghttp://crl.usertrust.com/UTN-USERFirst-ClientAuthenti
cationandEmail.crl0t+h0f0=+0?1http://crt.usertrust.com
/UTNAddTrustClient_CA.crt0%+0?http://ocsp.usertrust.com0
 *?H?÷
??Ö¾xWUm3DRþBÕ¨??û
²ýJ¿ö¯AIõZÅÒ­sn>é&|æL?Á0(ßËûB<¡%>
uÖÐ=9?fÑ¡?µM?o¯(l¯åêtZ¨Ú±Àñuz/?º?yÊþâ?Vt²øÓàCríý`9 Gû?¯:eH<?=¥%¿½ï`àIåÈë?C?ðàî
ÁÓÍ3_?н`j³;þúÔÉ:<í?ÿ?I3¾B)9?î3i.?EM¨iÚ?=Ò]|G?¥?m??Ö]W§0¾KID¸~
ÊÑy8ë´3ú :]&X?aU´!Õ?ÕàC@B0¾ê¥ç?Ò°þóuùnç0?60? éyZ?÷)
£øö6a\WV0
 *?H?÷
0?1 0 UGB10UGreater Manchester10USalford10U
COMODO CA Limited1907U0COMODO Client Authentication and Secure Email CA0
110725000000Z
120724235959Z0+1)0' *?H?÷
 nschroedl (at) mullen-group (dot) com0 [email concealed]?"0
 *?H?÷
?0?
?¦?ô ©?õ¼÷åµÖ|·¿.öànÅ©DaèÏø ?ØÔ?ßb?ÜoåTPýp¯De?²IÜ ºªÂô¾óø& ë*·$
¤q?ÅZÈ·Ë
~
R(w?ýI?§?°ir?½Ûu[88ë?«?â??ä7t­
áï,?dpú?_A¡&r·XÃ§WÎÕ?¹w<?z)¾7ñ>rcJÁýùä°Ç¥uÕ^Bxù7m$lo#>?n±Î+ÁÎ
??lêu?¬³tOP> "ñΝ?gë?&Í jåfÆßÃÕ?[î&Ïäøì? ³ûõúIwxJäøã?ê0?æ0U#0?zNt[Æxcd'Á/â [¼yÅ{
0U¼{ÓÙo¶iëQ]¬"ÕôtáN0Uÿ 0 Uÿ00 U%0+ +²10 `?H?øB 0FU ?0=0; +²10+0)+https://secure.comodo.net/CPS0WUP0N0L J
 H?Fhttp://crl.comodoca.com/COMODOClientAuthenticationandSecureEmailCA.c
rl0?+|0z0R+0?Fhttp://crt.comodoca.com/COMODOClientAut
henticationandSecureEmailCA.crt0$+0?http://ocsp.comodoca.com0%
U0nschroedl (at) mullen-group (dot) com0 [email concealed]
 *?H?÷
?J$h]v:Ú¤´ÚúÇKY?ãd`Y¿)ÄSW¨ºÓ?+[?%ZU¯?·H?Éaç}? î?Qò^@*©àëÐãqTÀt
EîiÅÛO*!=Egîë}2øêðm;Bs9ºBT, ?½"ì|?¡wêÿ};?¹¬ ?¾?#>µ|6?<¹?&ñ?fpr??JHiÌÙxm!kzOë°_?<pÇVq?vs7øñÂîß¿ÓÆÂôÙCêx?ÍuÞ¬ÙäIhì
¤§;%Kö,!h×?Ü?Nð9q
_³lÙÿmJñY+3Õà}×Òu?êZlÑòªãõº¬?J?Òóóóú?Á5 1?\0?X0©0?1 0 UGB10UGreater Manchester10USalford10U
COMODO CA Limited1907U0COMODO Client Authentication and Secure Email CAéyZ?÷)
£øö6a\WV0 + ??0 *?H?÷
 1  *?H?÷
0 *?H?÷
 1
120628172653Z0# *?H?÷
 1÷È­?¾ÿ+i ü_u|:?0« *?H?÷
 10?0  `?He*0  `?He0
*?H?÷
0  `?He0*?H?÷
?0+0
*?H?÷
@0
*?H?÷
(0+0  `?He0  `?He0  `?He0º +?71¬0©0?1 0 UGB10UGreater Manchester10USalford10U
COMODO CA Limited1907U0COMODO Client Authentication and Secure Email CAéyZ?÷)
£øö6a\WV0¼ *?H?÷
  1¬ ©0?1 0 UGB10UGreater Manchester10USalford10U
COMODO CA Limited1907U0COMODO Client Authentication and Secure Email CAéyZ?÷)
£øö6a\WV0
 *?H?÷
?'omá?YÄ2üÆ0q?}t½³GðË@®­ ÈC¢|ó-¨ ÚX?ÎVmå)Ð8ewØ?0!=ä9Èò¯ó>þj À}>¶2QÛUÒýt7>®iä >Öq\¹
¯Ü¨Þ~ÞS+í¼URi¥~ùë:ò±¤Ú/l~i95:?V ?
ñS(Q°?]ö7Ä?qk.Õëe???cç®Õ.
ÍSܸ@[wÛ»;ó¡-?lªÒõ"ß???%yð5´ ?×Ö? 8.ê4¦£3L§s0óÀ¿tÓ÷;ÜÖ»¶ÿÄtÕt?¶¹ÍÈÍ?¼¢f?©°6?ÜÙö ?*«XN

[ reply ]
Re: web form filling bots Jun 28 2012 04:51PM
Rob (synja synfulvisions com) (1 replies)
RE: web form filling bots Jun 28 2012 06:20PM
Sandeep Cheema (51l3n7 live in) (1 replies)
data level entitlements Jun 28 2012 07:07PM
Thugzclub (thugzclub googlemail com) (2 replies)
Re: data level entitlements Jun 29 2012 12:23AM
Jeffrey Walton (noloader gmail com)
Re: data level entitlements Jun 28 2012 10:08PM
Vic Vandal (vvandal well com)
Re: web form filling bots Jun 28 2012 04:25PM
TAS (p0wnsauc3 gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus