Awesome Open Source

Programming Languages

Search results for fuzzing

995 search results found

Awesome Hacking ⭐ 72,700

A collection of various awesome lists for hackers, pentesters and security researchers

Dirsearch ⭐ 11,165

Web path scanner

Ffuf ⭐ 10,658

Fast web fuzzer written in Go

Oss Fuzz ⭐ 9,346

OSS-Fuzz - continuous fuzzing for open source software.

the champagne of beta embedded databases

Foundry ⭐ 7,514

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

Hypothesis ⭐ 7,240

Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

Fuzzdicts ⭐ 6,494

Web Pentesting Fuzz 字典,一个就够了。

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Clusterfuzz ⭐ 5,151

Scalable fuzzing infrastructure.

Awesome Fuzzing ⭐ 5,041

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

Syzkaller ⭐ 5,008

syzkaller is an unsupervised coverage-guided kernel fuzzer

Go Fuzz ⭐ 4,674

Randomized testing for Go

Aflplusplus ⭐ 4,533

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Dnstwist ⭐ 4,285

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Fast Check ⭐ 3,989

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

Intruderpayloads ⭐ 3,526

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Raccoon ⭐ 2,928

A high performance offensive security tool for reconnaissance and vulnerability scanning

Honggfuzz ⭐ 2,919

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

Onefuzz ⭐ 2,780

A self-hosted Fuzzing-As-A-Service platform

Fuzzing ⭐ 2,760

Tutorials, examples, discussions, research proposals, and other resources related to fuzzing

Awesome Api Security ⭐ 2,492

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Echidna ⭐ 2,461

Ethereum smart contract fuzzer

Packer Fuzzer ⭐ 2,399

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

The home of the ICU project source code.

Restler Fuzzer ⭐ 2,374

RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.

Testing Distributed Systems ⭐ 2,349

Curated list of resources on testing distributed systems

Winafl ⭐ 2,195

A fork of AFL for fuzzing Windows binaries

Python Pentest Tools ⭐ 2,170

Python tools for penetration testers

Onelistforall ⭐ 2,153

Rockyou for web fuzzing

Fuzzingpaper ⭐ 2,132

Recent Fuzzing Paper

Gryffin ⭐ 2,061

Gryffin is a large scale web security scanning platform.

Paramspider ⭐ 1,923

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

Boofuzz ⭐ 1,866

A fork and successor of the Sulley Fuzzing Framework

Web Fuzzing Box ⭐ 1,791

Web Fuzzing Box - Web 模糊测试字典与一些Payloads，主要包含：弱口令暴力破解、目录以及文件枚举、Web漏洞...字典

Libafl ⭐ 1,748

Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

Fuzzilli ⭐ 1,731

A JavaScript Engine Fuzzer

Domato ⭐ 1,631

Dictionary Of Pentesting ⭐ 1,612

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Afl.rs ⭐ 1,523

🐇 Fuzzing Rust code with American Fuzzy Lop

Cista ⭐ 1,490

Cista is a simple, high-performance, zero-copy C++ serialization & reflection library.

Rfsec Toolkit ⭐ 1,484

RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集，可借助SDR硬件+相关工具对无线通信进行研究。Coll with ♥ by HackSmith

Fuzzing101 ⭐ 1,482

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Php_bugs ⭐ 1,458

PHP代码审计分段讲解

Coercer ⭐ 1,452

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

Cargo Fuzz ⭐ 1,389

Command line helpers for fuzzing

Sqlancer ⭐ 1,383

Automated testing to find logic and performance bugs in database systems

Coyote ⭐ 1,383

Coyote is a library and tool for testing concurrent C# code and deterministically reproducing bugs.

Burpsuite For Pentester ⭐ 1,340

This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 solely and completely with "BurpSuite".

Pentesterspecialdict ⭐ 1,288

Dictionary for penetration testers happy hacker

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows.

Graphqlmap ⭐ 1,226

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Vscan ⭐ 1,226

开源、轻量、快速、跨平台的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)

Fuzzer Test Suite ⭐ 1,210

Set of tests for fuzzing engines

Atheris ⭐ 1,190

Libfuzzer Workshop ⭐ 1,149

Repository for materials of "Modern fuzzing of C/C++ Projects" workshop.

Afl Training ⭐ 1,145

Exercises to learn how to fuzz with American Fuzzy Lop

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

Paper_collection ⭐ 1,113

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Awesome Vulnerability Research ⭐ 1,040

🦄 A curated list of the awesome resources about the Vulnerability Research

CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with minimum configuration and no coding effort. Tests are self-healing and do not require maintenance.

Fuzzbench ⭐ 1,023

FuzzBench - Fuzzer benchmarking as a service.

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Sniffglue ⭐ 1,004

Secure multithreaded packet sniffer

Fuzzingbook ⭐ 977

Project page for "The Fuzzing Book"

Jackalope ⭐ 948

Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android

Crosshair ⭐ 924

An analysis tool for Python that blurs the line between testing and type systems.

Hacking With Go ⭐ 896

Golang for Security Professionals

Coverage-guided, in-process fuzzing for the JVM

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

Hypervisor 101 In Rust ⭐ 851

The materials of "Hypervisor 101 in Rust", a one-day long course, to quickly learn hardware-assisted virtualization technology and its application for high-performance fuzzing on Intel/AMD processors.

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

Dotdotpwn ⭐ 792

DotDotPwn - The Directory Traversal Fuzzer

A toolset for reverse engineering and fuzzing Protobuf-based apps

Deepstate ⭐ 782

A unit test-like interface for fuzzing and symbolic execution

AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICS

Recollapse ⭐ 762

REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

Leaky Paths ⭐ 746

A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Autobahn Testsuite ⭐ 720

Autobahn WebSocket protocol testsuite

Halfempty ⭐ 720

A fast, parallel test case minimization tool.

Awesome Fuzzing ⭐ 716

A curated list of awesome Fuzzing(or Fuzz Testing) for software security

Netaddr ⭐ 713

Network address types

Arm_now ⭐ 701

arm_now is a qemu powered tool that allows instant setup of virtual machines on arm cpu, mips, powerpc, nios2, x86 and more, for reverse, exploit, fuzzing and programming purpose.

Scalpel ⭐ 695

scalpel是一款命令行漏洞扫描工具，支持深度参数注入，拥有一个强大的数据解析和变异算法，可以将常 xml, form等）解析为树结构，然后根据poc中的规则，对树进行变异，包括对叶子节点和树结构的变异。变异完成之后，将树结构还原为原始的数据格式。

Netzob: Protocol Reverse Engineering, Modeling and Fuzzing

Firmwire ⭐ 646

FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares

CBOR codec (RFC 8949) with CBOR tags, Go struct tags (toarray, keyasint, omitempty), float64/32/16, big.Int, and fuzz tested billions of execs.

Caringcaribou ⭐ 639

A friendly car security exploration tool for the CAN bus

Cryptofuzz ⭐ 635

Fuzzing cryptographic libraries. Magic bug printer go brrrr.

JQF + Zest: Coverage-guided semantic fuzzing for Java.

Wordlists ⭐ 622

Infosec Wordlists and more.

Fuzzing Templates ⭐ 610

Community curated list of nuclei templates for finding "unknown" security vulnerabilities.

Canalyzat0r ⭐ 593

Security analysis toolkit for proprietary car protocols

Damn_vulnerable_c_program ⭐ 572

An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.

QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing

A fuzzer for full VM kernel/driver targets

Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels

american fuzzy lop (copy of the source code for easy access)

Frida Fuzzer ⭐ 547

This experimetal fuzzer is meant to be used for API in-memory fuzzing.

Libprotobuf Mutator ⭐ 543

Library for structured fuzzing with protobuffers

Related Searches

Fuzzing Fuzzer (433)

Python Fuzzing (387)

1-100 of 995 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.