Some example strings in the httpfuzzer feature file, used for matching server responses, cause a lot of false positives if the server reflects back the strings in the static injections library. A good example of these is the string "SQL".
The example strings in the example feature files should be pared down so that they don't trigger when injected content is reflected back.
Some example strings in the httpfuzzer feature file, used for matching server responses, cause a lot of false positives if the server reflects back the strings in the static injections library. A good example of these is the string "SQL".
The example strings in the example feature files should be pared down so that they don't trigger when injected content is reflected back.