Professional Documents
Culture Documents
New Compression DoS Attack based on In the Compression Hornets Nest: A Security
Study of Data Compression in Network Services"
- Thanks to RemiMHFU for pulling
Bugfix for XXE
- Thanks to putsi
Proxy fixes
- Should now work with Burp Suite with all plugins
===============
10. July 2015
===============
===============
12. May 2015
===============
===============
19. March 2015
===============
Framework Changes:
- The code design was a bit out-dated since 2009. Thus, it is heavily
refactored. Most important change: Almost every component like
AbstractPlugin or AbstractOption are now using the Java bean concept.
This was needed to improve the UI.
- New Plugin Configuration Screen, new UI Components for Options
- New Request/Response GUI
- Support for additional/custom HTTP Headers
- Shows response HTTP Headers
- URL Endpoint is now changeable
- Simplyfied maven structure
- Added custom checkstyle rules
- Bumped SoapUI to version 4.6.4
- Framework now saves last used WSDL URI
- Code improvements and Bug Fixes (thanks to Christian Altmeier)
- Proxysupport
=============
24. Juni 2013
=============
General:
- Splitted Signature Wrapping Plugin into a "Plugin" and its "Library
Functions"
- Library is independent of Main WS-Attacker Framework
Framework Changes:
- Very small GUI improvements
- lalib-checkboxtree library now added locally because of Maven repository
changes
=================
05. November 2012
=================
Framework Changes:
- Some GUI Elements have been recreated using Netbeans Form Designer (Matisse)
- Support for plugin functions -> See XSW response analysis
- Libraries are now used in a "lib" folder instead of repacking it into the JAR
============
4. July 2012
============
Added XML Signature Wrapping Plugin:
- Technique for automatically attacking XML Signature protected Web Services
- Just set the endpoint and follow the instructions on the Plugin Config screen
Framework Changes:
- Options Window is now Scrollable
- Some minor changes.
Release Note:
- Now only one format (zip) available
- Source Code can be checked in GIT Repository