Burpsuite 重要插件
2016-05-13 10:29
323 查看
1.Gason:Burpsuite-sqlmap插件,该插件可以让burp与sqlmap轻松对接,深度发掘SQL注入漏洞.
2.fuzzdb:fuzzing测试数据库,开源,深度测试SQL注入,xss,文件上传/解析等漏洞(结合intruder使用).
3.bypasswaf:让你轻松绕过waf防御(不要迷信waf).
Reference:
A.gason
http://www.myhack58.com/Article/html/3/7/2014/45418.htm https://code.google.com/archive/p/gason/downloads
B.fuzzdb
http://www.freebuf.com/sectool/6181.html https://github.com/rustyrobot/fuzzdb
C.waf baypass
http://www.wooyun.org/whitehats/MayIKissYou https://github.com/codewatchorg/bypasswaf
2.fuzzdb:fuzzing测试数据库,开源,深度测试SQL注入,xss,文件上传/解析等漏洞(结合intruder使用).
3.bypasswaf:让你轻松绕过waf防御(不要迷信waf).
Reference:
A.gason
http://www.myhack58.com/Article/html/3/7/2014/45418.htm https://code.google.com/archive/p/gason/downloads
B.fuzzdb
http://www.freebuf.com/sectool/6181.html https://github.com/rustyrobot/fuzzdb
C.waf baypass
http://www.wooyun.org/whitehats/MayIKissYou https://github.com/codewatchorg/bypasswaf
相关文章推荐
- UIAlertView的按钮颜色设置
- CI 笔记7,easyui 异步加载
- [置顶]SQL SERVER完整、差异和事务日志备份及还原(脚本和GUI实现) [原创]
- Android Camera setRecordingHint(true)函数 在部分手机上的问题,例如拉伸,变形
- UIScrollView不能响应UITouch事件
- 通过pt-query-digest分析收集MySQL慢查询日志到指定位置
- Java finished with non-zero exit value 2 - Android Gradle
- FineUI Grid 缓存列显示隐藏状态
- 300. Longest Increasing Subsequence
- Android 四种异步操作UI界面的方法
- UIMenuController和UIMenuItem,即iOS剪贴板
- 【BZOJ4430】[Nwerc2015]Guessing Camels赌骆驼【树状数组】【或CDQ分治】
- POJ 2785 4 Values whose Sum is 0(折半枚举)
- 63. Unique Paths II
- @Responsebody与@RequestBody
- marquee标签
- nested exception is java.lang.IllegalStateException: @Resource annotation requires a single-arg meth
- UGUI研究院之Text文本渐变(十一)
- ContentValues和HashTable和HashMap的区别
- build 并deploy saiku-query0.4到nexus