Mirrors/fuzzdb
2
0
Fork 0
mirror of https://github.com/fuzzdb-project/fuzzdb.git synced 2024-11-26 04:50:17 +00:00
Code Issues Projects Releases Packages Wiki Activity

Removed 'latest news' section

Browse source
This commit is contained in:
Adam Muntner 2015-10-25 12:01:43 -04:00
parent 241b18017b
commit 1405fba80a
1 changed files with 0 additions and 22 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
README.md
View file

@ -77,28 +77,6 @@ Other ways fuzzdb is often used:
* in training materials and documentation
* to learn about software exploitation techniques
# Latest news #
* 9/11/2015
Structural changes and better file naming consistency. Docs are all moved out of the the initial line comments in fuzz files and into README.md documents. Document directores that were throughout the entire tree are now all relocated to /Docs.
* 9/10/2015 - Migrated to Github. No more version numbers!
* Many thanks to Jacco van Tuijl for doing much needed cleanup/updates
Older
* Thanks to lawKnee, new features added to the cfm web shell, and a nifty sql web shell
* The data dir from the tool raft, containing paths extracted from the "disallow" fields from the robots.txt files of 1.7 million websites, presented at BlackHat 2011 (https://raft.googlecode.com/)
* Added new attack payload file os-cmd-execution/OSCommandInject.Windows.fuzz.txt and a case to the unix version of the file that breaks out of regex with a $
* Many more platforms added to discovery, check the svn logs, too many to list here
* /attack-payloads/BizLogic/CommonMethods.fuzz.txt - thanks to Tim Brown and darkraver
* /generic/interesting-files-siteminder.txt - CA Siteminder discovery
* /generic/proxy-conf.txt - Various popular locations for proxy.pac files
* Updated sqli attacks using new filename convention to make it simpler to navigate fuzzdb and include it in other projects, other directories will follow. Thanks to Nathan Hamiel and Marcin Wielgoszewski for prompting me to create the new namespace format. Fixed a few misplaced SQLI test cases thanks to Michael Brooks careful eye.
* fuzzdb-1.08.tgz added: command exec cheatsheets for unix and windows, netcat cheatsheet, microsoft sharepoint test cases, file upload filter bypass test cases, invalid microsoft filenames, javascript events, html tags, null byte test cases, updated _readme.txt
* fuzzdb-1.07.tgz Lots more sqli.Discovery patterns of common files containing passwds and common login filenames. (4/28/2010)
* Added more sqli attack and enumeration patterns, reorganized sqli tree, in svn not in tarball yet (4/22/2010)
* Added more web shells (4/20/2010)
* FreeBSD !FreshPorts now carries fuzzdb [http://www.mail-archive.com/cvs-all@freebsd.org/msg166332.html] (4/19/2010)
* Latest version: scrubbed spaces from file and path names for better shell navigation, rearranged files using a functional approach, added the /regex dir containing things you might want to look for on returned pages. Initial checkin contains a large set of error messages and list of common session ID cooke names.(4/17/2010)
# Who #
FuzzDB was created by Adam Muntner (unix23 @ gmail.com)