Open utterances-bot opened 5 years ago
milloni
commented
5 years ago I think it's a conceptual misnomer to lump in "web fuzzers" with application fuzzers. These two have very little in common and putting afl and Owasp fuzzers in one list creates more confusion and it helps to do anything
eviltester
commented
5 years ago If you think that, then could you add an answer on the quora question and help reduced the confusion that you think the answer I provided will generate?
milloni
commented
5 years ago Sure, I left a reply, thanks. I cringed a bit having to create a Quora account but whatever :)
What is the best fuzzer (automated software testing tool) to find 0-days? Why? Quora Answer - EvilTester.com
Q: What is the best fuzzer (automated software testing tool) to find 0-days? Why?
A:
0-day is a very broad statement.
I tend to use the payload fuzzers in BurpSuite and OWasp Zap Proxy, but these require me to identify the target that I’m testing, and the appropriate data scope and range to fuzz.
https://www.quora.com/What-is-the-best-fuzzer-automated-software-testing-tool-to-find-0-days-Why/answer/Alan-Richardson-13