Stompy – The Web Application Session Analyzer Tool
A new tool dealing with web sessions was recently announced, it’s called stompy, a free tool to perform a fairly detailed black-box assessment of WWW session identifier generation algorithms. Session...
View ArticleInternet Explorer Zero-Day Accidentally Leaked To Chinese Hackers
First up, happy new year – let’s hope 2011 is an interesting year for the infosec community. Anyway today’s story is about the recently released tool cross_fuzz by Michal Zalewski and an inadvertent...
View Articlecross_fuzz – A Cross-Document DOM Binding Fuzzer
cross_fuzz is an amazingly effective but notoriously annoying cross-document DOM binding fuzzer that helped identify about one hundred bugs in all browsers on the market – many of said bugs exploitable...
View Articleamerican fuzzy lop – Security Oriented Fuzzing Tool
American fuzzy lop is a security-oriented fuzzing tool that employs a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases that...
View Article
More Pages to Explore .....