PHP Fuzzer by RoMeO from DarkMindZ. What does it do? It will go thro a list of known vuln. tests, and check if your site is vuln against them. What do you need? cURL on your website / site hosting the script. How does it work? Alright, this is pretty simple, and yet pretty usefull.. you need to go to your site, find a $_GET variable, maybe its ?page, ?inc, etc.. copy the path of it like this: http://www.darkmindz.com/index.php?variable= and put it in the target input in the fuzzer, and start it up .. it will now test the different vulns test on that variable, those tests are used by almost all web hackers. now, if your site is vuln against any of them, you can either post here, PM me, email me, contact me on my site. whatever, and I will help you out in fixing it remember to test for all the used get variables on your site,, to make things clearer, I will show examples on how I would test my own site: Site: http://www.darkmindz.com Variables `I get them from simply browsing the site`: ?rowstart= ?news_id= /forum/view.dmz?id= well now, we can test one at a time. and see if the fuzzer finds anything here is the fuzzer: DarkMindZ PHP Fuzzer - Enjoy, and let me know what you think, this is v1, v2 will be with a larger vuls DB, and better reporting tools