이번에 새롭게 추가된 기능으로는 다음과 같다:
- Extraction of user names from HTTP Digest Authentication (RFC 2617), such as those found in US Cyber Challenge “Cyber Quest February 2012”.
- HTTP headers are shown on the Parameters tab (including common headers like “Host” and “User-Agent” as well as rare ones).
- HTTP X headers are shown for hosts under the “Host Details” > “Extra Details” node. These X headers include “x-up-calling-line-id” and “HTTP_X_UP_CALLING_LINE_ID”, which can be used to identify the phone number of the mobile device used to access a web page. This type of information leakage can be detected with Collin Mulliner's MNO Privacy Checker.
- Support for the Null / Loopback link layer packets that are written when sniffing localhost on BSD operating systems.
- Ability to select a custom cleartext dictionary file for the "Cleartext" tab. This feature can be used in order to look for text in a specific language.
- Files with “.raw” extension are now treated as pcap files since this is the extension used by Sguil (hat tip to Doug Burks for this idea).
- The alert window about WinPcap not being installed has been removed
프로페셔날 버전에서는 오프라인에서 후이즈 조회를 할 수 있는 기능이 추가 되었다고 한다.
댓글 없음:
댓글 쓰기