An odd idea stroke me when watching the Avalanche NEXT presentation during Networking Tech Field Day – they have a fuzzing module that you can use to test whether your servers and applications survive all sorts of crazy illegal requests. Could that be used to detect SQL injection vulnerabilities in your web apps?
It seems the answer is YES (at least based on the answers they gave during the presentation), but it would be nice to have a more definitive one. Comments most welcome.
Watch the videos
Spirent was a sponsor of Networking Tech Field Day 6.