The OWASP JBroFuzz Project is a web application fuzzer for requests being made over HTTP and/or HTTPS. Its purpose is to provide a single, portable application that offers stable web protocol fuzzing capabilities.
Features
- Commandline support - main class analyzing and executing the commandline options
- Added --no-execute option to command line support
- Added "Connection: close" preference option to be added to the headers automatically
- Massive UI revamp for Fuzzing Tab: Contains 3 Sub-Tabs: Input, Output, On the wire
- Introduction of Fuzzing Transforms for those double-URL, triple-Base64 encodings
- Added HTTP proxy support & authentication for checking updates
- EncoderHashWindow improvements in keeping history within different row selections
- Fixed ZBase32 Encoding/Decoding to work as Phil wants it to
- Prefix/Suffix in Fuzzer Transforms: http://www.owasp.org/index.php/OWASP_JBroFuzz_Tutorial#Added_Fuzzer_Transformations
- Added a plain-text encoder, similar to Zero-Fuzzer for theoretical completeness
- Fixed a bunch of supposed "security holes" reported by static analyzers
- Small Oracle payloads update
Categories
SecurityLicense
GNU General Public License version 2.0 (GPLv2)Follow JBroFuzz
Other Useful Business Software
Simplify IT and security with a single endpoint management platform
NinjaOne automates the hardest parts of IT, delivering visibility, security, and control over all endpoints for more than 20,000 customers.
The NinjaOne automated endpoint management platform is proven to increase productivity, reduce security risk, and lower costs for IT teams and managed service providers. The company seamlessly integrates with a wide range of IT and security technologies. NinjaOne is obsessed with customer success and provides free and unlimited onboarding, training, and support.
Rate This Project
Login To Rate This Project
User Reviews
-
The best way of communicating a web vulnerability with .jbrofuzz files