Abstract

HTTP: Advanced Assessment Techniques

Saumil Udayan Shah, Director of Research & Development, NT OBJECTives Inc; Director, Net-Square Solutions Pvt. Ltd. [ IIS, SQL, ISA, etc. ]

The Fire and Water toolkit contains tools for both assessment and defense of web servers. This talk discusses some advanced techniques used in the F&W toolkit which overcomes efficiency problems and highly increases the accuracy of the tools. Two of the techniques discussed here include Web and Application server identification, and HTTP page signatures. Web and Application server identification allows for discovery of the underlying web server platform, despite it being obfuscated, and other application components which may be running as plug-ins. HTTP page signatures allow for advanced HTTP error detection and page groupings. A few other HTTP probing techniques shall be discussed as well. A Blackhat version of the Fire and Water toolkit will be specially released, which demonstrates the techniques being discussed. The current version of the Fire and Water toolkit, containing a preview of the techniques, is available for download from NT Objectives. A whitepaper is being prepared, which shall be available from the same URL.