Definition
Benchmark testing is performed to evaluate the performance of a product or system against established standards or benchmarks. It allows you to determine their strengths and weaknesses and to identify areas for improvement.
Testing a web fuzzer
(Neef, Kleissner, et al., 2024):
- The buggy web app (bWAPP)
- The Damn Vulnerable Web Application (DVWA)
- The Xtreme Vulnerable Web Application (XVWA)
- WackoPicko
- 22 real-world WordPress plugins with known vulnerabilities. Except for some commercial plugins, a plugin’s source code is open, allowing to download and install it in your environment
Other vulnerable web applications used for evaluating a tool:
Testing a SQLIA detection tool
SQLIA (SQL injection attack) detection tool (SENTINEL) tested on (Li, Yan, et al., 2012):
- Scarf
- WackoPicko
- OpenIT
- openInvoice