Holy FFUF! — A Beginner Guide to Fuzz with FFUF

Photo by Moritz Erken on Unsplash

If you are a bug bounty hunter or security researcher, you must be familiar with a technique called Fuzzing. In case you just newly started, Fuzzing is a way of testing an application by automatically feed random input to an application. For example, hackers might feed in null byte (e.g. %00) or super long payload (e.g. 10000 As)to check how the application responses. If the application gives out strange…