Holy FFUF! — A Beginner Guide to Fuzz with FFUF

Photo by Moritz Erken on Unsplash

If you are a bug bounty hunter or security researcher, you must be familiar with a technique called Fuzzing. In case you just newly started, Fuzzing is a way of testing an application by automatically feed random input to an application. For example, hackers might feed in null byte (e.g. %00) or super long payload (e.g. 10000 As)to check how the application responses. If the application gives out strange…

--

--

--

Cybersecurity, Part-time bug bounty hunter. Support me by subscribe: https://mikekitckchan.medium.com/membership. Ping me for online private tutoring.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

To Trust Or Not To Trust: Can Finance Departments Rely On Their Data Integrity?

Lifecycle of a Vulnerability Overview — Part One

{UPDATE} Retro Combat Hack Free Resources Generator

After Recent Home Network Security Breaches, What Are The Top Tips To Secure Your Smart Home…

Educating Our Community on Cyber Threats

Rewarding Data Controllers

FrontLineArt

Privacy Recommendations for Revolutionaries

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
MikeChan

MikeChan

Cybersecurity, Part-time bug bounty hunter. Support me by subscribe: https://mikekitckchan.medium.com/membership. Ping me for online private tutoring.

More from Medium

Response Manipulation leads to Account Takeover

Breaking Parser Logic Gain Access To NGINX Plus API — Read/Write Upstreams.

XSS - The LocalStorage Robbery

XSS | HTML Injection and File Upload Bypass in HUAWEI Subdomain