WebScarab : Java Glossary
©1996-2017 Roedy Green of Canadian Mind Products
OWASP Webscarab gets between your browser and your server (and reports on the
HTTP (Hypertext Transfer Protocol) conversations going back
and forth). It can also deal with SSL (Secure Sockets Layer).
This is a higher level, more convenient, interface than the Ethernet
IP (Internet Protocol)
packet level, but less general. It is written in pure Java and hence will run on any
platform. If you have your jar extension set up correctly, all you need to do is
click the downloaded jar to run. You don’t need any sort of install, since it
has a Main-Class entry in the manifest. It has no instructions. Here is are the two tricks
to making it work:
- Set up the proxy to localhost:8009, not to the port
you are trying to snoop on.
- You need to open a session by clicking on File ⇒
New before WebScarab starts to capture things.