Paros is a Java application that helps you evaluate the security of your web applications, according to ParosProxy.org. It is distributed free of charge and intercepts HTTP and HTTPS data transferred between a client and a server. There is also a more robust version called MileSCAN Paros Pro that offers formal support from the developers. After you have installed and configured Paros Proxy, you are able to use its functions.
- Skill level:
Access the "Trap" page in Paros Proxy.
Check the "Trap Request" box to intercept HTTP or HTTPS requests.
Check the "Trap Response" box to intercept HTTP or HTTPS responses.
Click the "Tabular View" button after requests have been trapped to look at or change the trapped form elements.
Click the "Continue" button after you have made any modifications to the "textarea" field.
Access the "Options" page in Paros.
Locate the "<ProxyChain>" tag in the XML configuration file.
Insert a proxy address between the "<Name>" tags as follows:
Insert the correct port between the "<port>" tags as follows:
Insert any IP addresses or domain names that you wish to bypass the proxy between the "<Skip>" tags as follows:
Click "Save" and restart the Paros Proxy.
Tips and warnings
- The spider function is accessible by going to the menu and selecting "Tools" and "Spider."
- Submit a custom HTTP or HTTPS request by going to the menu and selecting "Tools" and "Send HTTP(S) Request."
- 20 of the funniest online reviews ever
- 14 Biggest lies people tell in online dating sites
- Hilarious things Google thinks you're trying to search for