[prev in list] [next in list] [prev in thread] [next in thread]
List: bugtraq
Subject: OWASP JBroFuzz 0.3 Fuzzer Released!
From: subere () uncon ! org
Date: 2006-11-29 2:18:18
Message-ID: 20061129021818.25695.qmail () securityfocus ! com
[Download RAW message or body]
JBroFuzz is an OWASP Project that emerged from penetration testing. It deals with \
fuzzing stateless network protocols such as HTTP, SOAP, XML, LDAP, etc.
Apart from fancy terminology, JBroFuzz 0.3 has inbuilt the following Generators ready \
to be used:
basic cross site scripting checks (XSS)
basic SQL injection (SQL)
buffer overflows checks (BFO)
format string errors checks (FSE)
integer overflows checks (INT)
Furthermore, a user can specify their own custom fuzz vectors by edititing the \
contents of the generators file (generators-0.3.jbrf1). This is also a first attempt \
to practically standardise fuzzing types and structure for network fuzzing.
Oh, and the motto goes: If you can't fuzz with JBroFuzz, you probably don't want to \
fuzz!
Thank you,
Subere
--
Homepage:
http://www.owasp.org/index.php/Category:OWASP_JBroFuzz
Download (sourceforge):
http://sourceforge.net/project/showfiles.php?group_id=180679&package_id=209088&release_id=467369
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic