238 Open source projects that are alternatives of or similar to Fuzzing Stuff

A utility to make Kotlin/Java tests random yet reproducible

🐇 Fuzzing Rust code with American Fuzzy Lop

Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis

Patches to afl to fix bugs or add enhancements

Mining parameters from dark corners of Web Archives

A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.

RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集，可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith

A fast SAT solver

一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.

A fast, parallel test case minimization tool.

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

A fork and successor of the Sulley Fuzzing Framework

The Art, Science, and Engineering of Fuzzing: A Survey

An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite

Hacking tools

Run fuzzing experiments in Docker

Randomly mutate JSON, XML, HTML forms, text and binary data for fuzz testing

Go Fuzzit Example

🤖 Repeat tests. Repeat tests. Repeat tests.

EBNF grammar fuzzer

Bugs are inevitable. Suffering is optional.

OSS-Fuzz - continuous fuzzing for open source software.

ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives

BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.

Exercises to learn how to fuzz with American Fuzzy Lop

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

A curated list of awesome directed fuzzing research papers

FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.

Curated list of resources on testing distributed systems

A container repository for my public web hacks!

Provides a Kotlin/Java library to create a random json string

Reflective testing.

📖 Guides and tutorials on how to fuzz Rust code

A fuzzing library in JavaScript. ✨

Erlang port of famous radamsa fuzzzer.

HTML5 WebSocket message fuzzer

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Command line tool for testing CRLF injection on a list of domains.

Variation of american fuzzy lop for testing compilers for C-like languages, revised by Alex Groce & collaborators to fuzz tools processing source code in C-like languages

A fork of AFL for fuzzing Windows binaries

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

DOM fuzzer

A bare-metal x86 instruction set fuzzer a la Sandsifter

wooyun public information backup

Fuzzing Parsers with Tokens

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

A toolset for reverse engineering and fuzzing Protobuf-based apps

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Recent Fuzzing Paper

FuZZan: Efficient Sanitizer Metadata Design for Fuzzing

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

won't maintain

Janus: a state-of-the-art file system fuzzer on Linux

A user-friendly fuzzing and crash triage tool for Windows

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows

A collection of various awesome lists for hackers, pentesters and security researchers

A blackbox mutational fuzzer for detecting critical bugs in SMT solvers