io.kent Posted September 17, 2012 Report Posted September 17, 2012 This project is fork of fuzzdb project and is about Obfuscating fuzzdb Web Application payloadsteenage-mutant-ninja-turtles :The Teenage Mutant Ninja Turtles project is three things:A Web Application payload database (heavily based on fuzzdb project for now)A Web Application error database (e.g. contain error messages that might return while fuzzing).A Web Application payload mutator.Nowadays all high profile sites found in financial and telecommunication sector use filters to filter out all types of vulnerabilities such as SQL, XSS, XXE, Http Header Injection e.t.c. In this particular project I am going to provide you with a tool to generate Obfuscated Fuzzing Injection attacks on order to bypass badly implemented Web Application injection filters (e.t.c SQL Injections, XSS Injections e.t.c).Bypassing SQL Injection filters The are numerous ways to by pass SQL injection filters, there even more ways to exploit them too. The most common way of evading SQL injection filters are:Using Case VariationUsing SQL CommentsUsing URL EncodingUsing Dynamic Query ExecutionUsing Null BytesNesting Stripped ExpressionsExploiting TruncationUsing Non-Standard Entry PointsCombine all techniques aboveDownload : Downloads - teenage-mutant-ninja-turtles - This project is fork of fuzzdb project and is about Obfuscating fuzzdb Web Application payloads - Google Project Hosting Quote
