Hand-picked web application fuzzing strings for initial testing of web application requests. The general use case will occur after one has mapped out a web application and has found some requests with lots of parameters. A quick fuzz of that request using Burp Intruder or wfuzz and this list could either discover a vulnerability or cause a strange response from the server. If a strange response is discovered, then more granular fuzzing/exploiting can be done with strings from https://github.com/danielmiessler/SecLists or https://github.com/minimaxir/big-list-of-naughty-strings.
-
Notifications
You must be signed in to change notification settings - Fork 19
DanMcInerney/FuzzStrings
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Simple, hand-picked list of fuzz strings
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published