Metaeye Security Group » 2007

The %00 is the famous null character when encoded in a URL. It is interesting to see how
different web servers behave when a null character is there in the GET request.

I use a simple python program that accepts the website name and URL to get, responds with the
web server version if available in the header and HTTP response code.

% ./uget.py
usage: ./uget.py <website name> <url>

continued…

| by warl0ck on May 17th, 2007 at 4:27 am | permanent link |


home advisories codes projects hunch archives contact rss2	[ Archive for May, 2007 ] • Fingerprinting web servers with a %00. The %00 is the famous null character when encoded in a URL. It is interesting to see how different web servers behave when a null character is there in the GET request. I use a simple python program that accepts the website name and URL to get, responds with the web server version if available in the header and HTTP response code. % ./uget.py usage: ./uget.py <website name> <url> continued… \| by warl0ck on May 17th, 2007 at 4:27 am \| permanent link \|
[ © MSG ]

[ Archive for May, 2007 ]