2330 Open source projects that are alternatives of or similar to Crlf Injection Scanner

syzkaller is an unsupervised coverage-guided kernel fuzzer

Web path scanner

RAS(RAndom Subdomain) Fuzzer

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

HTTP fuzzer engine security oriented

A user-friendly fuzzing and crash triage tool for Windows

coverage guided fuzz testing for java

Fuzz your Rust code with Google-developed Honggfuzz !

American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

run AFL with dynamorio

expansion of afl-unicorn using c++

Bugs are inevitable. Suffering is optional.

The Art, Science, and Engineering of Fuzzing: A Survey

AFL-based fuzz testing for .NET

Janus: a state-of-the-art file system fuzzer on Linux

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Hacking tools

My Material for the HITB presentation

Structure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.

Fuzzing Unification Framework

Misc. Public Reports of Penetration Testing and Security Audits.

Web Pentesting Fuzz 字典,一个就够了。

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

SSL and TLS protocol test suite and fuzzer

Utilities for automated crash sample processing/analysis, easy afl-fuzz job management and corpus optimization

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

coverage guided fuzz testing for javascript

coverage guided fuzz testing for python

ANTLR v4 grammar-based test generator

gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Rockyou for web fuzzing

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

RTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework

Extract endpoints marked as disallow in robots files to generate wordlists.

Mutation Based Fuzzer for IEC61850 Server IED'S

Mining parameters from dark corners of Web Archives

Go Fuzzit Example

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Customizable TCP fuzzing tool to test for remote buffer overflows.

Subdomain takeover vulnerability checker

Network based protocol fuzzer

PyJFuzz - Python JSON Fuzzer

Generation-based, context-free grammar fuzzer.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

🎯 Command Injection Payload List

run AFL with pintool

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Patches to afl to fix bugs or add enhancements

Composer Require Aliased Packages: define aliases for your favorite Composer packages.

A command-line client for the Crowdin API

Prettier formatter for package.json files

⚡️ boilerplate template manager that generates files or directories from template repositories

⚡The resource runtime