9.5. 模糊测试

9.5.1. Web Fuzz

9.5.2. 扫描器

  • Nuclei a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use

  • xray 安全评估工具,支持常见 web 安全问题扫描和自定义 poc

9.5.4. Burp插件

9.5.5. 字典

9.5.6. Unicode Fuzz

9.5.7. WAF Bypass