Research

We build genuine partnerships with our clients

• White Papers
  • Web Application Vulnerability Statistics 2010-2011
  • Assessing Cloud Node Security
  • Smartphones in the Enterprise
  • Clickjacking
• Tools
  • Clickjacking Tool
  • CAT
    • Why use CAT?
    • Key Components
    • Download
    • User Guide
      • Installation
      • Menu
      • Options
      • Log View
      • Repeater Panel
      • Proxy Panel
      • Fuzzer Panel
      • Log Panel
      • Auth Checker Panel
      • SSL Checker Panel
      • Notepad
      • Integrated Web Browser Panel
      • Addons
      • Additional Information
    • Addons
    • Mono
  • MBean Trojan
  • IIS7 Header Block
• Blog
  • Malware 2 - From Infection to Persistence
  • Server Technologies - HTTPS BEAST Attack
  • Malware - Dark Comet RAT
  • Server Technologies - Reverse Proxy Bypass
  • SAP Exploitation – Part 2
  • SAP Exploitation – Part 1
  • WebGL - More WebGL Security Flaws
  • WebGL - A New Dimension for Browser Exploitation
    • FAQ
  • Server Technologies - SSL2: Should it keep you awake at night?
  • SmartPhones - Can you Trust your USB Charger?
  • Malware 1 - From Exploit to Infection
  • Server Technologies - JBoss RMI Twiddling

The auth checker panel is used in determining the authorisation of particular requests as different users. The auth checker has two proxies running on different port numbers and two web browsers controls using these proxies. The web browsers can then be authenticated into the application as a high and low user. The upper browser authenticates as the user with higher privileges.

The checkbox ‘Sync Top to Bottom’ will cause any requests (both GET and POST) to be sent also through the low users session. The low user will use its cookie but request the page that they do not have a direct link to. The ‘Send Top’ option is used when a request will perform an action, e.g. delete an item, and the test is to see if the low user can perform this, therefore you do not want the high use to send the request.

External Browsers

This same functionality can be used in two external browsers (e.g. Firefox and IE) by configuring them to proxy through each port. The ‘low user’ then logs into the application with a low level of privileges than the ‘high user’, and the high user logs in with a high level of access. When both browsers are correctly configured and authenticated the ‘copy’ tick box is selected from the top of the Auth Checker panel or the ‘Minibar’ window (the Minibar window is activated by clicking the ‘Mini Bar’ button on the Auth Checker panel). From this point the proxies are synchronised so that any action that the high user performs will be performed by the low user but with the low user’s cookie.

For example if an admin user clicks on ‘manage users’ the high user will pause and wait for the low user (the lights will change to green when a user is paused and waiting for the other). Then a low user would click on any link within the application. This will result in the low user’s link being replaced with the high users ‘mange user’ link and the low user would attempt to force browse to this area. This can be used with POST as well as GET requests to ensure that the ACLs are correctly implemented.

© Copyright 2012 Context Information Security.

Main Navigation

• Home /
• Our Company /
• Security Solutions /
• Research /
• Media /
• Contact Us