309 Open source projects that are alternatives of or similar to LibAFL

A list of useful payloads for Web Application Security and Pentest/CTF

A blackbox mutational fuzzer for detecting critical bugs in SMT solvers

Fuzzing and Data Manipulation Framework (for GNU/Linux)

This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Patches to afl to fix bugs or add enhancements

Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers, and facilitating the process of analyzing Windows drivers for vulnerabilities

A fork and successor of the Sulley Fuzzing Framework

gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.

A utility to make Kotlin/Java tests random yet reproducible

Janus: a state-of-the-art file system fuzzer on Linux

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

Constraint solver based on coverage-guided fuzzing

coverage guided fuzz testing for python

A container repository for my public web hacks!

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集，可借助SDR硬件+相关工具对无线通信进行研究。Collect with ♥ by HackSmith

A user-friendly fuzzing and crash triage tool for Windows

Run fuzzing experiments in Docker

coverage guided fuzz testing for java

🐇 Fuzzing Rust code with American Fuzzy Lop

Randomly mutate JSON, XML, HTML forms, text and binary data for fuzz testing

Fuzz your Rust code with Google-developed Honggfuzz !

一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows

EBNF grammar fuzzer

AFL-based fuzz testing for .NET

Mining parameters from dark corners of Web Archives

The Art, Science, and Engineering of Fuzzing: A Survey

OSS-Fuzz - continuous fuzzing for open source software.

Android application fuzzing framework with fuzzers and crash monitor.

A fast, parallel test case minimization tool.

A fast SAT solver

Command line helpers for fuzzing

Simple script for generating Malformed QRCodes.

Web path scanner

Bugs are inevitable. Suffering is optional.

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

FuzzBench - Fuzzer benchmarking as a service.

A collection of various awesome lists for hackers, pentesters and security researchers

An analysis tool for Python that blurs the line between testing and type systems.

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

coverage guided fuzz testing for javascript

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

the champagne of beta embedded databases

A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Code for the USENIX 2017 paper: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels

A high performance offensive security tool for reconnaissance and vulnerability scanning

A fuzzing library in JavaScript. ✨

Scalable fuzzing infrastructure.

QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing

Hacking tools

A testing framework for automatically finding and simplifying bugs in graphics shader compilers.

Rapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")

Seeding fuzzers with symbolic execution

Command line tool for testing CRLF injection on a list of domains.