JAVASNOOP

Posted by Arshan Dabirsiaghi

JavaSnoop is an Aspect Security tool that allows security testers to easily test the security of Java applications. JavaSnoop is an example of how Aspect is leading the industry in providing Verification Services, and not just for your web applications.

 

A tool that lets you intercept methods, alter data and otherwise test the security of Java applications on your computer.

Normally, without access to the original source code, testing the security of a Java client is unpredictable at best and unrealistic at worst. With access the original source, you can run a simple Java program and attach a debugger to it remotely, stepping through code and changing variables where needed. Doing the same with an applet is a little bit more difficult.

Unfortunately, real-life scenarios donít offer you this option, anyway. Compilation and decompilation of Java are not really as deterministic as you might imagine. Therefore, you canít just decompile a Java application, run it locally and attach a debugger to it.

Next, you may try to just alter the communication channel between the client and the server, which is where most of the interesting things happen anyway. This works if the client uses HTTP with a configurable proxy. Otherwise, youíre stuck with generic network traffic altering mechanisms. These are not so great for almost all cases, because the data is usually not plaintext. Itís usually a custom protocol, serialized objects, encrypted, or some combination of those.

JavaSnoop attempts to solve this problem by allowing you attach to an existing process (like a debugger) and instantly begin tampering with method calls, run custom code, or just watch whatís happening on the system.

DOWNLOAD JAVASNOOP