Top 239 fuzzing open source projects

🤖 Repeat tests. Repeat tests. Repeat tests.

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

FuZZan: Efficient Sanitizer Metadata Design for Fuzzing

ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives

won't maintain

A blackbox mutational fuzzer for detecting critical bugs in SMT solvers

BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.

This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.

A curated list of awesome directed fuzzing research papers

Patches to afl to fix bugs or add enhancements

Curated list of resources on testing distributed systems

A fork and successor of the Sulley Fuzzing Framework

Provides a Kotlin/Java library to create a random json string

A utility to make Kotlin/Java tests random yet reproducible

📖 Guides and tutorials on how to fuzz Rust code

An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite

Erlang port of famous radamsa fuzzzer.

RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集，可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Run fuzzing experiments in Docker

Variation of american fuzzy lop for testing compilers for C-like languages, revised by Alex Groce & collaborators to fuzz tools processing source code in C-like languages

🐇 Fuzzing Rust code with American Fuzzy Lop

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Go Fuzzit Example

A bare-metal x86 instruction set fuzzer a la Sandsifter

一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。

Fuzzing Parsers with Tokens

EBNF grammar fuzzer

A toolset for reverse engineering and fuzzing Protobuf-based apps

Mining parameters from dark corners of Web Archives

Recent Fuzzing Paper

OSS-Fuzz - continuous fuzzing for open source software.

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

A fast, parallel test case minimization tool.

Exercises to learn how to fuzz with American Fuzzy Lop

Command line helpers for fuzzing

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Web path scanner

Detecting Logic Bugs in DBMS

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

🦄 A curated list of the awesome resources about the Vulnerability Research

FuzzBench - Fuzzer benchmarking as a service.

A unit test-like interface for fuzzing and symbolic execution

An analysis tool for Python that blurs the line between testing and type systems.

Netzob: Protocol Reverse Engineering, Modeling and Fuzzing

Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

Project page for "The Fuzzing Book"

coverage guided fuzz testing for javascript

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

the champagne of beta embedded databases

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels

Scalable fuzzing infrastructure.

QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing

A testing framework for automatically finding and simplifying bugs in graphics shader compilers.

This experimetal fuzzer is meant to be used for API in-memory fuzzing.

Generation-based, context-free grammar fuzzer.

Randomized testing for Go

A curated list of awesome Fuzzing(or Fuzz Testing) for software security