full-disclosure - Re: Browzar Footprints

lists.openwall.net		lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC
Open Source and information security mailing list archives

Hash Suite: Windows password security audit tool. GUI, reports in PDF.

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Date: Sat, 2 Sep 2006 01:53:08 +0100
From: "Colin Copley" <colin.75@...nternet.com>
To: "Juha-Matti Laurio" <juha-matti.laurio@...ti.fi>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Browzar Footprints

"Juha-Matti Laurio" <juha-matti.laurio@...ti.fi> wrote:
> Yes, that was my point, MSIE based and no menus, only some items on the
>File menu and a typical Help menu.
> I just successfully used it for online banking, however and SSL symbol
>appeared to the lower right corner of the browser window.
> The symbol text was localized, i.e. it comes from MSIE DLL's.

looks like it uses some wininet.dll calls to clear the cache

WININET.DeleteUrlCacheEntry
WININET.FindCloseUrlCache
WININET.FindFirstUrlCacheEntryA
WININET.FindFirstUrlCacheEntryA

but leaves the last visited url in "E:\Documents and
Settings\-username-\LocalSettings\Temporary Internet
Files\Content.IE5\index.dat"

However cache misses, redirected urls and urls that are clicked through
persist.

"'Browzar' leaves no user footprints" -
http://computerworld.com/action/article.do?command=viewArticleBasic&articleId=9002864
"Browzar leaves no tracks (on your PC)  -
http://reviews.cnet.com/4531-10921_7-6633398.html
"Browzar browser offers privacy protection" -
http://www.theregister.co.uk/2006/08/31/browzar/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/