BurpSuite intruder attack-type 4種爆破模式
Sniper 單參數爆破,多參數時同一個字典按順序替換各參數,總之初始值有一個參數不變
Battering ram 多參數同時爆破,但用的是同一個字典
Pichfork 多參數同時爆破,但用的是不同的字典
Cluster bamb 多參數做笛卡爾乘積模式爆破
初始值:
admin 123456
==========================
$username $passwd
${1} ${2}
admin 123456
root 123456
guest 123456
admin admin
admin root
admin guest
=========================
初始值:
admin 123456
$username $passwd
${1} ${2}
admin admin
root root
guest guest
=========================
初始值:
admin 123456
$username $passwd
${1} ${2}
$username $passwd