WebScarab Background
WebScarab Icon

A framework for analyzing applications.

5.3K
Downloads
4.7
3 Ratings
All Versions
5.3K
Total Downloads
2
Downloads Last Week
Current Version
5.3K
Total Downloads
2
Downloads Last Week
Downloads Last 10 Weeks
All Versions
4.7
3 Ratings
5
4
3
2
1
Current Version
4.7
3 Ratings
5
4
3
2
1

WebScarabOverview

Editor: There is no shiny red button on WebScarab, it is a tool primarily designed to be used by people who can write code themselves, or at least have a pretty good understanding of the HTTP protocol. If that sounds like you, welcome! Download WebScarab, sign up for the mailing list on the OWASP subscription page, and enjoy! You can read a Brief tutorial to explain the basic workings.

WebScarab is designed to be a tool for anyone who needs to expose the workings of an HTTP(S) based application, whether to allow the developer to debug otherwise difficult problems, or to allow a security specialist to identify vulnerabilities in the way that the application has been designed or implemented.
Features

A framework without any functions is worthless, of course, and so WebScarab provides a number of plugins, mainly aimed at the security functionality for the moment. Those plugins include:

Fragments - extracts Scripts and HTML comments from HTML pages as they are seen via the proxy, or other plugins

Proxy - observes traffic Between the browser and the web server. The WebScarab proxy is able to observe both HTTP and encrypted HTTPS traffic, by negotiating an SSL connection between WebScarab and the browser instead of simply connecting the browser to the server and allowing an encrypted stream to pass through it. Various proxy plugins have also been developed to allow the OperaTor to control the requests and responses that pass through the proxy.

Manual intercept - allows the user to modify HTTP and HTTPS requests and responses on the fly, before they reach the server or browser.

BeanShell - allows for the execution of arbitrarily complex operations on requests and responses. Anything that can be expressed in Java can be executed.

New

Fixed some bugs.

WebScarabTech Specs

Version
1.0
Date
07.23.09
License
Free
Language
English
File Size
3.64MB
Category
Operating Systems
Windows XP, 2000, 98
System Requirements
No additional system requirements.

SelectedFor You

K9 Web Protection for Win XP/2000 Icon
Blue Coat Systems, Inc.
K9 Web Protection is a content filtering solution for your home computer.
X-Scan Icon
XFOCUS Team
X-Scan is a general scanner for scanning network vulnerabilities.
SniperSpy Icon
Retina-X Studios, LLC
SniperSpy remote spy software allows you to monitor your PC from anywhere!
Revealer Keylogger Pro Icon
Logixoft
Professional version of the free award winning Revealer Keylogger.