309 Open source projects that are alternatives of or similar to LibAFL

A grammar-based custom mutator for AFL++

AFL binary instrumentation

run AFL with pintool

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

run AFL with dynamorio

Fuzzing Unification Framework

American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries

This is a repo is to upload files done during my research.

A fork of AFL for fuzzing Windows binaries

A collection of user-space Linux kernel specific guided fuzzers based on LKL

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

AFL "mostly" ported to cygwin

Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting

Sample files for fuzzing ImageMagick

This experimetal fuzzer is meant to be used for API in-memory fuzzing.

ANTLR v4 grammar-based test generator

A fuzzer for full VM kernel/driver targets

Custom memory allocator that helps discover reads from uninitialized memory

Resources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.

🏆 Collection of bugs uncovered by fuzzing Rust code

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Janus: a state-of-the-art file system fuzzer on Linux

Reflective testing.

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

Randomly mutate JSON, XML, HTML forms, text and binary data for fuzz testing

FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.

Fuzzinator Random Testing Framework

A list of useful payloads for Web Application Security and Pentest/CTF

Fuzzing and Data Manipulation Framework (for GNU/Linux)

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers, and facilitating the process of analyzing Windows drivers for vulnerabilities

gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

A cross-platform browser fuzzing framework

CLI to integrate continuous fuzzing with Fuzzit

Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记

HTML5 WebSocket message fuzzer

A user-friendly fuzzing and crash triage tool for Windows

coverage guided fuzz testing for java

Fuzz your Rust code with Google-developed Honggfuzz !

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows

AFL-based fuzz testing for .NET

The Art, Science, and Engineering of Fuzzing: A Survey

Android application fuzzing framework with fuzzers and crash monitor.

A fast SAT solver

Simple script for generating Malformed QRCodes.

wooyun public information backup

Bugs are inevitable. Suffering is optional.

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

vfuzz

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

A collection of various awesome lists for hackers, pentesters and security researchers

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

Constraint solver based on coverage-guided fuzzing

coverage guided fuzz testing for python

A container repository for my public web hacks!

A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.