On Thu, 04 Aug 2011 01:45:16 BST, Context IS - Disclosure said: > CAT is a tool for manual web application penetration testing and includes t > he following features: Sounds at least potentially interesting. A few questions: > - CAT uses Internet Explorer's rendering engine for accurate HTML > representation Is this optional/switchable? Might be nice to *not* use the actual IE render engine if you're working on serving up a client-side exploit via XSS - that would be shooting yourself in the foot then. ;) > - MONO Support for Linux and OSX (Currently in Beta). What render engine does it use for Linux/OSX? Or is this referring to using MONO to talk from a Windows test box to a Linux/OSX target? > - It is totally free! What license?
Attachment:
pgpGfEPOIkQjP.pgp
Description: PGP signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/