A good example (and PoC) are account creation wizards, which these days (for example) include a captcha question.
To show how this can be done in O2, I've just coded a script that shows this in action:
- Tool_-_Twitter_Account_Creation.h2 - Wiki page with technical details and screenshots
- O2 Platform - Tool - Create Twitter Accounts.avi - YouTube Video
// ensure that there isn't an logged in session
if (ie.hasLink("Sign out"))
//open account creation page and populate the fields
// ask user to resolve captcha
var captchaUrl = ie.images().src();
var captchaAnswer = ascx_CaptchaQuestion.askQuestion(captchaUrl);
- What do you think?
- Can you read the script?
- Does it make sense?
- Can you describe what is going to happen at each line of code?
One of the tasks that I want to complete in the short/medium term is to figure out how to execute scripst/workflows like this under other OWASP tools (WebScarab, ZAP, ...) and Commercial 3rd party BlackBox tools (Burp, WebInspect, AppScan, ...)