Fuzzing Web Applications

Hunting for XSS and SQLi effortlessly and automatically

Vickie Li
Vickie Li
Jan 26 · 6 min read
Photo by Neringa Hünnefeld on Unsplash

I generally prefer manual hacking when approaching a new web app target. Manual testing is useful for discovering new and unexpected attack vectors, but it also takes up a lot of time and effort.

Automated testing, on the other hand, is much more efficient at teasing out a large number of bugs within a…

Already have an account? Sign in

Vickie Li

Written by

Vickie Li

Professional investigator of nerdy stuff. Hacks and secures. Creates god awful infographics. https://twitter.com/vickieli7

The Startup

The Startup

Medium's largest active publication, followed by +575K people. Follow to join our community.

Write the first response

Discover Medium

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch

Make Medium yours

Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore

Become a member

Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade
AboutHelpLegal