Reviews:
 ·AT&T Southwest
2 edits | reply to BeesTea
Re: The state of homograph attacksFound the same. Worked until browser restarted.
For you Proxomitron users out there, here's a quick hack:
Name = "IDN Removal"
Active = TRUE
Bounds = "$NEST(<a(rea|),<(/a(rea|)|br)>)"
Limit = 1025
Match = "*href=$AV(*\&#[0-9]+;*)*"
Replace = "Removed IDN exploitable URL"
Semi-tested. :) |
|
SUMwarePremium
join:2002-05-21
kudos:2
1 edit | This Proxo filter works for me with the posted exploit and Firefox 1.0. Thanks for posting it. |
|
| reply to no__1__here
How exactly do I get this hack into proxo? I am using 4.5, but not adept at making these adjustments to the program. Thanks for any help.:D
JW |
|
SUMwarePremium
join:2002-05-21
kudos:2
2 edits | Hi Jim. Make a backup copy of your default.cfg file (located in the Proxo folder) for safety. Then open the default.cfg file. Copy & paste the filter into the config within the [Patterns] section (a safe location would be where site-specific filters (ie. Yahoo, CNN, etc.) are located. Save the config, then exit/restart Proxo. |
|
| Hey SUM,
Thanks man. I really appreciate the assistance.
JW |
|
SUMwarePremium
join:2002-05-21
kudos:2 | My pleasure. |
|
|
|
