the-web-application-hackers-handbook

Chapter 20 n A Web Application Hacker’s Toolkit 763
described in detail the different ways in which automation can be used in customized
attacks. Most test suites include functions that leverage automation to
facilitate various common tasks. Here are some commonly implemented features:
n Manually configured probing for common vulnerabilities. This function
enables you to control precisely which attack strings are used and how they
are incorporated into requests. Then you can review the results to identify
any unusual or anomalous responses that merit further investigation.
n A set of built-in attack payloads and versatile functions to generate arbitrary
payloads in user-defined ways — for example, based on malformed
encoding, character substitution, brute force, and data retrieved in a
previous attack.
n The ability to save attack results and response data to use in reports or
incorporate into further attacks.
n Customizable functions for viewing and analyzing responses — for example,
based on the appearance of specific expressions or the attack payload
itself (see Figure 20-9).
n Functions for extracting useful data from the application’s responses — for
example, by parsing the username and password fields in a My Details
page. This can be useful when you are exploiting various vulnerabilities,
including flaws in session-handling and access controls.
Figure 20-9: The results of a fuzzing exercise using Burp Intruder