February 2018
Intermediate to advanced
426 pages
11h 3m
English
Let's experiment with an HTTP fuzzer and find out how we would find the stack-based buffer overflow in the Disk Sorter Enterprise application. Metasploit has an HTTP GET Request URI Fuzzer that we can use:

Well, that was easy. Looking at the output of the module, we can see that we were able to crash the service by sending a request with 1583 characters to the Windows 7 target machine. We can see the result:

Read now
Unlock full access