Fuzzer or Scanner?
10 views
Skip to first unread message
Lautaro Dolberg
Jun 15, 2010, 9:54:59 AM6/15/10
to Websecurify
Is this product a fuzzer?
I mean, does it performs mutation over messages and traces what part
of the messages covers code on the webapplication in order to generate
malicious data?
How can I customize or use message seeds if I want to do gray box
testing?
Thanks in advance.
Lautaro
I mean, does it performs mutation over messages and traces what part
of the messages covers code on the webapplication in order to generate
malicious data?
How can I customize or use message seeds if I want to do gray box
testing?
Thanks in advance.
Lautaro
Petko D. Petkov
Jun 15, 2010, 6:16:11 PM6/15/10
to webse...@googlegroups.com
It fuzzes and scans at the same time. You can most certainly extend the tool to fit your needs but there isn't any documentation on how to do that at the moment. However, if you have experience with writing firefox extensions you will find it very easy to get around Websecurify internals.
I will post on this mailing list how to do these kind of stuff very soon.
pdp
Reply all
Reply to author
Forward
0 new messages