mirror of
https://github.com/fuzzdb-project/fuzzdb.git
synced 2024-11-22 19:13:09 +00:00
Update README.md
This commit is contained in:
parent
ac3613f2a1
commit
de4932865b
1 changed files with 4 additions and 3 deletions
|
@ -3,9 +3,10 @@ FuzzDB is the most comprehensive dictionary of attack patterns and payload primi
|
||||||
Downloading this repository is likely to cause a false-positive alarm by your antivirus or antimalware software, the filepath should be whitelisted. There is nothing in FuzzDB that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.
|
Downloading this repository is likely to cause a false-positive alarm by your antivirus or antimalware software, the filepath should be whitelisted. There is nothing in FuzzDB that can harm your computer as-is, however it's not recommended to store these files on a server or other important system due to the risk of local file include attacks.
|
||||||
|
|
||||||
# FuzzDB Uses #
|
# FuzzDB Uses #
|
||||||
* [OWASP Zap](https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project) proxy's FuzzDB Zap Extension.
|
* Web and service security testing with
|
||||||
* Burp Proxy's [intruder](http://portswigger.net/intruder/) tool
|
* [OWASP Zap](https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project) proxy's FuzzDB Zap Extension
|
||||||
* Identify interesting service responses using grep patterns for PII, credit card numbers, error messages, and more
|
* Burp Proxy's [intruder](http://portswigger.net/intruder/) tool
|
||||||
|
* To identify interesting service responses using grep patterns for PII, credit card numbers, error messages, and more
|
||||||
* Inside custom tools for testing software and application protocols
|
* Inside custom tools for testing software and application protocols
|
||||||
* Crafting security test cases for GUI or command line software with standard test automation tools
|
* Crafting security test cases for GUI or command line software with standard test automation tools
|
||||||
* Incorporating into other Open Source software or commercial products
|
* Incorporating into other Open Source software or commercial products
|
||||||
|
|
Loading…
Reference in a new issue