- Web Penetration Testing with Kali Linux(Third Edition)
- Gilberto Najera Gutierrez Juned Ahmed Ansari
- 108字
- 2021-06-24 18:45:02
Web application fuzzers
A fuzzer is a tool designed to inject random data into a web application. A web application fuzzer can be used to test for buffer overflow conditions, error handling issues, boundary checks, and parameter format checks. The result of a fuzzing test is to reveal vulnerabilities that cannot be identified by web application vulnerability scanners. Fuzzers follow a trial and error method and require patience while identifying flaws.
Burp Suite and WebScarab have a built-in fuzzer. Wfuzz is a one-click fuzzer available in Kali Linux. We will use all of these to test web applications in Chapter 10, Other Common Security Flaws in Web Applications.
推薦閱讀
- pcDuino開發(fā)實(shí)戰(zhàn)
- Mastering ElasticSearch
- Windows Server 2019 Cookbook
- Windows Server 2012 Hyper-V:Deploying the Hyper-V Enterprise Server Virtualization Platform
- 高性能Linux服務(wù)器構(gòu)建實(shí)戰(zhàn):系統(tǒng)安全、故障排查、自動(dòng)化運(yùn)維與集群架構(gòu)
- 細(xì)說Linux基礎(chǔ)知識(shí)
- Windows Server 2012網(wǎng)絡(luò)操作系統(tǒng)項(xiàng)目教程(第4版)
- NetDevOps入門與實(shí)踐
- INSTANT Galleria Howto
- Linux操作系統(tǒng)
- VMware vSphere 5.1 Cookbook
- Linux內(nèi)核修煉之道
- Azure Resource Manager Templates Quick Start Guide
- BuddyPress Theme Development
- Azure Serverless Computing Cookbook