backfuzz is a fuzzing tool for different protocols (FTP, HTTP, IMAP, etc) but also has no-protocol plug-ins (Example: File Fuzzer). The general idea is that this script has several functions already predefined in the file “functions.py”, so whoever wants to write their own plugin’s (for another protocol) you can do so in a few lines and add it to the script.
That’s the main power of it, it’s extensible. You can follow the format of existing plugins – for example the HTTP fuzzing plugin.
The code is still in BETA and requires a lot of work to get better, so any questions / suggestions / criticism / comment are welcomed by the author.
git clone https://github.com/localh0t/backfuzz
You can read more here.
- Rowhammer – DDR3 Exploit – What You Need To Know
- Santoku Linux – Mobile Forensics, Malware Analysis, and App Security Testing LiveCD
- Google Expands Pwnium Year Round With Infinite Bounty
- Tutorial for Fuzzled – Writing a Fuzzer with the Fuzzled Framework
- JBroFuzz 0.5 from OWASP – Stateless Network Protocol Fuzzer
- fm-fsf – Freakin’ Simple Fuzzer – Cross Platform Fuzzing Tool
Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 229,598 views
- AJAX: Is your application secure enough? - 119,410 views
- eEye Launches 0-Day Exploit Tracker - 85,200 views