Fuzzing tools included in BackTrck
Luckily, for us it is not necessary for the typical penetration tester to spend months and years preparing the perfect fuzzer. The community has already provided us with an abundance of these wonderful tools and compared to writing them, their usage is a breeze!
Bruteforce Exploit Detector (BED)
The Bruteforce
Exploit Detector (BED) does exactly what the name implies. The program will allow you to send data to the target application in hopes that a crash will occur. Although this method does work in certain situations, at times more control is needed when trying to find vulnerable applications. BackTrack 5 R1 has BED preinstalled at /pentest/fuzzers/bed. BED provides the ability to fuzz several, often used protocols without modification.
/pentest/fuzzers/bed# ./bed.pl
BED 0.5 by mjm ( www.codito.de ) & eric ( www.snake-basket.de )
Usage:
./bed.pl -s <plugin> -t <target> -p <port> -o <timeout> [ depends on the plugin ]
...
