[WEB SECURITY] WAF XSS Fuzzer?!

Ryan Dewhurst ryandewhurst at gmail.com
Wed Feb 2 16:36:44 EST 2011


Hi list,

I was wondering if such a thing existed and if not, would such a thing be
possible?

Or does WAF evasion always need some degree of intelligence to produce a
viable payload?

I must admit my WAF evasion knowledge is quite poor. I am awaiting The Web
Application Obfuscation book as a starting point.

Thanks,
Ryan

Ryan Dewhurst

blog www.ethicalhack3r.co.uk
projects www.dvwa.co.uk | www.webwordcount.com
twitter www.twitter.com/ethicalhack3r
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20110202/6f882a96/attachment-0003.html>


More information about the websecurity mailing list