290 Open source projects that are alternatives of or similar to fuzzuf

Generation-based, context-free grammar fuzzer.

The Art, Science, and Engineering of Fuzzing: A Survey

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

Randomly mutate JSON, XML, HTML forms, text and binary data for fuzz testing

ANTLR v4 grammar-based test generator

Janus: a state-of-the-art file system fuzzer on Linux

A fork of AFL for fuzzing Windows binaries

Mutation Based Fuzzer for IEC61850 Server IED'S

Patches to afl to fix bugs or add enhancements

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

A user-friendly fuzzing and crash triage tool for Windows

Custom memory allocator that helps discover reads from uninitialized memory

Fuzzware's main repository. Start here to install.

BSOD: Binary-only Scalable fuzzing Of device Drivers

A Genetic File, Syscall and Network Fuzzer.

Derive property based testing fast-check into a fuzzer for REST APIs

Improving security and resilience of WebAssembly VMs/runtimes/parsers using fuzzing

This repository contains the tools we used in our research on the Google Titan M chip

Log4j jndi injection fuzz tool

fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)

Fuzz-Test R Functions

🍭 A sweet programming language that is robust, minimalistic, and expressive.

🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.

Extract endpoints marked as disallow in robots files to generate wordlists.

Crowdsourced fuzzing cluster. 🚀

Git folder digger, I'm sure it's worthwhile stuff.

Challenging testcases for fuzzers

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

JavaFuzz 4 Android

Quality assurance testing for the curl project

SOLTIX: Scalable automated framework for testing Solidity compilers.

Dockerfile for AFL++ and helpful other tools

A regular expression fuzzer.

Automatic function exporting and linking for fuzzing cross-architecture binaries.

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

OWASP ZAP addon for finding vulnerabilities in JWT Implementations

Swift-based fuzzing tools

Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.

MediaTek Fuzzing Workshop in HITCON 2021

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Coverage based JVM Fuzz testing tool.

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

Fuzzer to automatically find side-channel (timing) vulnerabilities

OpenType font file format fuzzer for Windows

Android application fuzzing framework with fuzzers and crash monitor.

Fast as Flash Web URL Fuzzing tool written in golang.

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

The x86 processor fuzzer

yet another dirbuster

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

A multi-purpose extensible self-adaptive evolutionary tool

libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Framboise is a fuzzer for in-depth testing of WebAPIs.

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

Constraint solver based on coverage-guided fuzzing

Rapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

Rockyou for web fuzzing

A list of useful payloads for Web Application Security and Pentest/CTF