From the course: Ethical Hacking: Session Hijacking

Unlock the full course today

Join today to access over 22,500 courses taught by industry experts or purchase this course individually.

Using Webscarab-NG as a web proxy

Using Webscarab-NG as a web proxy - Linux Tutorial

From the course: Ethical Hacking: Session Hijacking

Start my 1-month free trial

Using Webscarab-NG as a web proxy

- [Narrator] When testing internet sites for security vulnerabilities, it's useful to be able to act as a man in the middle. Many web testing tools provide this functionality in the form of a web proxy. WebScarab is the OWASP tool used for web proxying. As shown here on the OWASP site, WebScarab is a Java tool, so using it requires having Java installed on your computer. Web proxies are application-level devices and are often used in corporate environments to provide a point of monitoring and security enforcement. WebScarab comes preloaded in the Web Application Analysis menu in Kali. I'll click on it and shortly the WebScarab interface will appear. I'll click on the Proxy tab and the Listeners tab, and we can see that WebScarab is listening on ports 8008. I'll go back to the Summary page. I'll start Firefox and change its configuration to route through the proxy. I do this through Preferences, Advanced, Network, Settings, and Manual system proxy configuration, which I'll set to…

Contents