Awesome Open Source

Programming Languages

Search results for penetration testing fuzzing

penetration-testing x

31 search results found

Awesome Hacking ⭐ 72,700

A collection of various awesome lists for hackers, pentesters and security researchers

Dirsearch ⭐ 11,165

Web path scanner

Ffuf ⭐ 10,658

Fast web fuzzer written in Go

Fuzzdicts ⭐ 6,494

Web Pentesting Fuzz 字典,一个就够了。

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Raccoon ⭐ 2,928

A high performance offensive security tool for reconnaissance and vulnerability scanning

Awesome Api Security ⭐ 2,492

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Onelistforall ⭐ 2,153

Rockyou for web fuzzing

Web Fuzzing Box ⭐ 1,791

Web Fuzzing Box - Web 模糊测试字典与一些Payloads，主要包含：弱口令暴力破解、目录以及文件枚举、Web漏洞...字典

Dictionary Of Pentesting ⭐ 1,612

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Graphqlmap ⭐ 1,226

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Dotdotpwn ⭐ 792

DotDotPwn - The Directory Traversal Fuzzer

Leaky Paths ⭐ 746

A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

swiss army knife for hackers

Firefly ⭐ 352

Black box fuzzer for web applications

Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load 🛰️ 🦀

Fdsploit ⭐ 257

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Forbidden ⭐ 208

Bypass 4xx HTTP response status codes and more. Based on PycURL and Python Requests.

Filesensor ⭐ 207

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.

Make URL path combinations using a wordlist

Bug Bounty Writeups ⭐ 143

Repository of Bug-Bounty Writeups

Kitsec Core ⭐ 136

Ethical hacking, made easy.

PENIOT: Penetration Testing Tool for IoT

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Malqr.github.io ⭐ 105

MalQR is a collection of malicious QR Codes and Barcodes you can use to test the security of your scanners.

Bypassfuzzer ⭐ 102

Fuzz 401/403/404 pages for bypasses

FLUFFI (Fully Localized Utility For Fuzzing Instantaneously) - A distributed evolutionary binary fuzzer for pentesters

Tnt Fuzzer ⭐ 92

OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.

Lfitester ⭐ 89

LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.

Fucking Awesome Hacking ⭐ 86

A collection of various awesome lists for hackers, pentesters and security researchers. With repository stars⭐ and forks🍴

Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.

Security Study Tutorial ⭐ 70

Summary of online learning materials

uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.

Command line fuzzer and bruteforcer 🌪 wfuzz for command

Wafbypasser ⭐ 58

Py3webfuzz ⭐ 57

A Python3 module to assist in fuzzing web applications

[ Blazing Fast Web Fuzzer in Rust ]

Buggpt Tools ⭐ 34

AI Generated Tools/one-off-scripts primarily for Bug Bounties

Combine words from two wordlist files and concatenate them with an optional delimiter

(DOM-)XSS fuzzer based on phantomjs and go.

PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.

Smart Url Fuzzer ⭐ 18

Explore URLs of domains fast and efficiently using fuzzing techniques

Protocol Analyzer ⭐ 16

Fuzz testing framework for network protocols.

Wordlist ⭐ 16

Custom wordlist, updated regularly

Useragent Fuzz Lib ⭐ 12

User-agent Fuzzing Library. This repository holds data of all the user agents in the `user_agents.json` file, which can be used directly with any tool that can parse json format.

Improving Your Penetration Testing Skills ⭐ 12

Strengthen your defense against web attacks with Kali Linux and Metasploit

Every Hacker's Go to Fuzzing List. Introducing the Ultimate Fuzzing Directory: Your Go-To Resource for Penetration Testers and Bug Bounty Hunters! Unlock the power of comprehensive fuzzing with our meticulously curated Fuzzing Directory, a one-stop solution designed to streamline your penetration testing and bug bounty hunting endeavors.

Wordlist Extender ⭐ 9

Extend wordlist by appending digits and special characters to each word.

Uncryptable Level1 ⭐ 8

Web application based crackme / CTF.

Bug Bounty Tips ⭐ 8

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Online tips and explain the commands, for the better understanding of new hunters..

Crossjoin ⭐ 7

Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzzing payloads.

Wordlistgen ⭐ 6

Super Simple Python Word List Generator for Fuzzing and Brute Forcing in Python

Generate a wordlist to fuzz amounts or any other numerical values.

💥 This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for Web Sites, portals, and Organizations.

dirforce is a tool for directory discovery

Conduct OOB Fuzzing of targets with custom payloads towards callback server

An other python web fuzzer

Related Searches

Python Penetration Testing (1,380)

Security Penetration Testing (767)

Fuzzing Fuzzer (435)

Shell Penetration Testing (398)

Python Fuzzing (387)

Scanner Penetration Testing (373)

Penetration Testing Pentest Tool (335)

Penetration Testing Security Tools (308)

Penetration Testing Red Team (305)

Penetration Testing Information Security (275)

1-31 of 31 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.