[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    OWASP JBroFuzz 0.3 Fuzzer Released!
From:       subere () uncon ! org
Date:       2006-11-29 2:18:18
Message-ID: 20061129021818.25695.qmail () securityfocus ! com
[Download RAW message or body]

JBroFuzz is an OWASP Project that emerged from penetration testing. It deals with \
fuzzing stateless network protocols such as HTTP, SOAP, XML, LDAP, etc. 

Apart from fancy terminology, JBroFuzz 0.3 has inbuilt the following Generators ready \
to be used:

basic cross site scripting checks (XSS) 
basic SQL injection (SQL) 
buffer overflows checks (BFO) 
format string errors checks (FSE) 
integer overflows checks (INT) 

Furthermore, a user can specify their own custom fuzz vectors by edititing the \
contents of the generators file (generators-0.3.jbrf1). This is also a first attempt \
to practically standardise fuzzing types and structure for network fuzzing. 

Oh, and the motto goes: If you can't fuzz with JBroFuzz, you probably don't want to \
fuzz!

Thank you,

Subere
--
Homepage:
http://www.owasp.org/index.php/Category:OWASP_JBroFuzz

Download (sourceforge):
http://sourceforge.net/project/showfiles.php?group_id=180679&package_id=209088&release_id=467369



[prev in list] [next in list] [prev in thread] [next in thread]