tags:

views:

429

answers:

1
+1  Q: 

Http header injection test

Hi guys, How can you test Http header injection in your application. Actually I want to see what is the diff after adding enableheader=false in config and before in my application. Can somebody help me with that.

Framework .NET 2.0 Language C# Platform: windows XP

+2  A: 

You can manually test it by inspecting the header request/response with a tool such as Fiddler (an article about how to use it here), or using a Firefox add-on like Firebug or Live HTTP Headers.

Alconja  2009-06-10 23:00:30
so i installed fiddler and tried running on my application.I got some HTTP responses back.But how would I know about http header injection from fiddler.Is there anything I need to see which tells me that this page is vulnerable to http header injection.
alice7  2009-06-10 23:21:14
Alconja  2009-06-11 01:59:32

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?