Results 1 to 2 of 2

Thread: is there an alternative to stompy (session id analysis) for backtrack 4

  1. #1
    Just burned his ISO
    Join Date
    Oct 2010

    Default is there an alternative to stompy (session id analysis) for backtrack 4

    hey guys, with backtrack 3 there was this neat tool called stompy which would analyse the randomness of web site session Ids. I noticed this tool is gone from bt4. Is there another tool which does that same thing? I know nessus has a plugin to do something similar but could not find one for openvas. Though I've been told the nessus plugin claims the session IDs on some sites are predictable even though stompy claims there is plenty of randomness.

  2. #2
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010

    Default Re: is there an alternative to stompy (session id analysis) for backtrack 4

    If you're talking about web site session IDs in the form of cookies, URL parameters or hidden form fields, then both Burp Suite and WebScarab can do this sort of analysis.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

Similar Threads

  1. HDD analysis ???
    By zigge in forum Beginners Forum
    Replies: 1
    Last Post: 08-14-2010, 10:38 PM
  2. Backtrack Series - 12: Session Hijacking for Secure Websites
    By fifo_thekid in forum OLD BackTrack 4 Howto
    Replies: 27
    Last Post: 02-04-2010, 04:37 AM
  3. Alternative ro sbd?
    By Danboy in forum OLD Pentesting
    Replies: 6
    Last Post: 05-27-2009, 06:15 PM
  4. Alternative?
    By thorin in forum OLD Pentesting
    Replies: 7
    Last Post: 04-03-2009, 05:05 PM
  5. Trying to get alternative WMs to work.
    By Surreal Killa in forum OLD Newbie Area
    Replies: 0
    Last Post: 02-17-2009, 12:48 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts