[WEB SECURITY] Scripting Question

romain r at fuckthespam.com
Wed May 14 12:42:42 EDT 2008


Selenium is also another tool to do automation
http://selenium.openqa.org/

I just started using it for the wasc script mapping project and it looks nice to me for 
what you wanna do...

R.

Stephen de Vries wrote:
> 
> There are a number of very good "browser drivers" out there, e.g.:
> 
> http://watij.sf.net
> http://wtr.rubyforge.org/
> 
> I wrote up an intro to security testing with watij here: 
> http://www.securebydefault.info/2008/02/15/testing-with-watij/
> But Watir is IMO more feature rich and flexible than watij.
> 
> Stephen
> 
> 
> On May 14, 2008, at 4:10 PM, Dark Con wrote:
> 
>> This question might be a little offtopic for this list, so please let 
>> me know if I should direct it elsewhere.
>>
>> I'm looking for a way to automate some client-side exploit testing. I 
>> want to write a script that loads web pages automatically in a real 
>> web browser. I realize that there are multiple other kludges that 
>> might do something similar (setting up the RefreshEvery Firefox 
>> extension for one), but the goal is to expand this to some other 
>> things, as well.
>>
>> What I'm really looking for is a way to code UI interaction (or some 
>> libraries that might help with that). I've found some easy ways to do 
>> it in OSX (Automator makes things like this really simple), but was 
>> wondering if anyone on the list has ever done anything like this 
>> before and might be able to point me to any articles/books about the 
>> topic, or recommend which languages might have the best facilities for 
>> a project like this.
>>
>> Thanks.
>> -DC
>>
>> ---------------------------------------------------------------------------- 
>>
>> Join us on IRC: irc.freenode.net #webappsec
>>
>> Have a question? Search The Web Security Mailing List 
>> Archives:http://www.webappsec.org/lists/websecurity/
>>
>> Subscribe via RSS:http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
>>
>> Join WASC on LinkedIn
>> http://www.linkedin.com/e/gis/83336/4B20E4374DBA
>>
> 
> 
> ---------------------------------------------------------------------------- 
> 
> Join us on IRC: irc.freenode.net #webappsec
> 
> Have a question? Search The Web Security Mailing List 
> Archives:http://www.webappsec.org/lists/websecurity/
> 
> Subscribe via RSS:http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
> 
> Join WASC on LinkedIn
> http://www.linkedin.com/e/gis/83336/4B20E4374DBA
> 


----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA



More information about the websecurity mailing list