Benny
Take a look at http://www.itko.com/site/products/lisa/ws_testing.jsp. I am
using the all_attacks fuzzing list that comes with ws-fuzzer and its working
fine. I had the same problems as you with all the other web service fuzzers
I tried.
Rui
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Benny Tsai
Sent: September 6, 2007 12:58 PM
To: pen-test@securityfocus.com
Subject: web service fuzzers
Hi all,
What are some good web service fuzzers? I'm currently playing with
WSFuzzer, but python minidom is choking on the wsdl I'm trying to
fuzz. WebScarab is able to parse the wsdl with no problems, so I
suspect that the wsdl is fine, it just doesn't play nicely with python
minidom. Unfortunately, WebScarab doesn't seem to have a web service
fuzzing capability yet. Any suggestions?
-Benny
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.485 / Virus Database: 269.13.6/991 - Release Date: 05/09/2007
2:55 PM
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
