Syzkallersyzkaller is an unsupervised coverage-guided kernel fuzzer
Stars: ✭ 3,841 (+4120.88%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+7862.64%)
ras-fuzzerRAS(RAndom Subdomain) Fuzzer
Stars: ✭ 42 (-53.85%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+223.08%)
nozakiHTTP fuzzer engine security oriented
Stars: ✭ 37 (-59.34%)
Sienna LocomotiveA user-friendly fuzzing and crash triage tool for Windows
Stars: ✭ 130 (+42.86%)
Javafuzzcoverage guided fuzz testing for java
Stars: ✭ 193 (+112.09%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (+143.96%)
afl-dyninstAmerican Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
Stars: ✭ 65 (-28.57%)
SourceWolfAmazingly fast response crawler to find juicy stuff in the source code! 😎🔥
Stars: ✭ 132 (+45.05%)
unicorn-fuzzerexpansion of afl-unicorn using c++
Stars: ✭ 25 (-72.53%)
Fuzzing SurveyThe Art, Science, and Engineering of Fuzzing: A Survey
Stars: ✭ 116 (+27.47%)
SharpfuzzAFL-based fuzz testing for .NET
Stars: ✭ 185 (+103.3%)
JanusJanus: a state-of-the-art file system fuzzer on Linux
Stars: ✭ 139 (+52.75%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (+100%)
Fuzzcheck RsStructure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.
Stars: ✭ 247 (+171.43%)
fuzzufFuzzing Unification Framework
Stars: ✭ 263 (+189.01%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-73.63%)
FuzzdictsWeb Pentesting Fuzz 字典,一个就够了。
Stars: ✭ 4,013 (+4309.89%)
WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (+279.12%)
TlsfuzzerSSL and TLS protocol test suite and fuzzer
Stars: ✭ 335 (+268.13%)
Afl UtilsUtilities for automated crash sample processing/analysis, easy afl-fuzz job management and corpus optimization
Stars: ✭ 383 (+320.88%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+440.66%)
Fisy FuzzThis is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
Stars: ✭ 110 (+20.88%)
AnsvifA Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Stars: ✭ 107 (+17.58%)
AflplusplusThe fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Stars: ✭ 2,319 (+2448.35%)
Jsfuzzcoverage guided fuzz testing for javascript
Stars: ✭ 532 (+484.62%)
Pythonfuzzcoverage guided fuzz testing for python
Stars: ✭ 175 (+92.31%)
GrammarinatorANTLR v4 grammar-based test generator
Stars: ✭ 162 (+78.02%)
Gramfuzzgramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.
Stars: ✭ 209 (+129.67%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+874.73%)
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+2953.85%)
AngoraAngora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.
Stars: ✭ 669 (+635.16%)
RTSPhuzzRTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework
Stars: ✭ 33 (-63.74%)
roboxtractorExtract endpoints marked as disallow in robots files to generate wordlists.
Stars: ✭ 40 (-56.04%)
ParamspiderMining parameters from dark corners of Web Archives
Stars: ✭ 781 (+758.24%)
leaky-pathsA collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
Stars: ✭ 507 (+457.14%)
fuzzaCustomizable TCP fuzzing tool to test for remote buffer overflows.
Stars: ✭ 29 (-68.13%)
SubzySubdomain takeover vulnerability checker
Stars: ✭ 287 (+215.38%)
doonaNetwork based protocol fuzzer
Stars: ✭ 64 (-29.67%)
PyjfuzzPyJFuzz - Python JSON Fuzzer
Stars: ✭ 342 (+275.82%)
DharmaGeneration-based, context-free grammar fuzzer.
Stars: ✭ 416 (+357.14%)
ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-31.87%)
afl-pinrun AFL with pintool
Stars: ✭ 64 (-29.67%)
FuzzapiFuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
Stars: ✭ 521 (+472.53%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+970.33%)
Afl PatchesPatches to afl to fix bugs or add enhancements
Stars: ✭ 76 (-16.48%)
CrapComposer Require Aliased Packages: define aliases for your favorite Composer packages.
Stars: ✭ 86 (-5.49%)
Crowdin CliA command-line client for the Crowdin API
Stars: ✭ 89 (-2.2%)
Boilr⚡️ boilerplate template manager that generates files or directories from template repositories
Stars: ✭ 1,268 (+1293.41%)
Run⚡The resource runtime
Stars: ✭ 90 (-1.1%)