Fuzzer / fuzzing

Last updated on December 23rd, 2020 by Radostin Angelov. Filed under

fuzzing is a software testing technique used to discover coding errors and security loopholes in software, operating systems or networks by inputting massive amounts of random data, called fuzz, to the system in an attempt to make it crash.

A fuzzer is a software that can be programmed to send large number of requests. In terms of web application security, a fuzzer can be used to send large numbers of HTTP requests to a target website with the aim of identifying backup files etc. For example once configured it will start sending such requests to the target website;

  • http://www.example.com/wp-config.old
  • http://www.example.com/wp-config.php.old
  • http://www.example.com/wp-config.bak
  • http://www.example.com/wp-config.php.back
  • http://www.example.com/wp-config.txt
  • http://www.example.com/wp-config.zip

WordPress Hosting, Firewall and Backup

This Website is: