Access-Me 0.1

June 3, 2008 – 6:16 pm

Access-Me allows users to test their web applications for authentication vulnerabilities. With this first release the user will be able to:

• Resubmit the current page without session tokens
• Resubmit the current page using different HTTP verbs (HEAD/SECCOM)
• View reports on how the application handled the requests.

Access-Me 0.1 is available here.

Related posts:

• Cross Environment Hopping
• What you need to know about HTTP Verb Tampering
• WordPress PHP Code Execution and Cross-Site Scripting
• WordPress 2.5 Cookie Forging Explained
• sqlninja 0.2.2 Released - SQL Injection Tool