Getting crazy with proxy chaining

tate@ClearNetSec.com (Tate Hansen) — Thu, 19 Jan 2006 02:33:00 -0700

For efficiency, thoroughness, or comparison you can chain several popular web application assessment tools together. Three tools I sometimes chain in a series are the BURP Spider, Paros Proxy, and WebInspect. To do this on a single system, you simply configure a listening port for each tool. Check the diagram below:

You can configure each tool to do this by specifying a listening port for incoming requests and an IP address:listening port for outgoing requests. In the diagram above, BURP Spider is listening on localhost:9002 (port #), Paros Proxy is listening on localhost:9001, and WebInspect on localhost:9000. Each tool forwards incoming requests to the next in line (WebInspect, in the diagram above, sends the original request to the target site).

Paros distinguishes the proxy setting configurations as follows:

“Local proxy”: This is for incoming requests
“Use an outgoing proxy server”: This is for outgoing requests

BURP Spider:

“Proxy running on port”: This is for incoming requests
“Use proxy server”: This is for outgoing requests

WebInspect:

“Step Mode Listening IP Address and Port”: This is for incoming requests
“Proxy server”: This is for outgoing requests

Below are screenshots of the tools in action with the above configuration.

If you want to get super crazy, you can do exploratory investigating of target websites with the above tools and do it all anonymously with Tor and Privoxy (albeit potentially sacrificing thoroughness due to Privoxy filtering)

ClearNet Security: Getting crazy with proxy chaining

Getting crazy with proxy chaining