dynTaintTracera taint tracer based on DynamoRIO, currently ARM only
Stars: ✭ 32 (-81.61%)
phuzzFind exploitable PHP files by parameter fuzzing and function call tracing
Stars: ✭ 53 (-69.54%)
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: ✭ 2,061 (+1084.48%)
CrosshairAn analysis tool for Python that blurs the line between testing and type systems.
Stars: ✭ 586 (+236.78%)
afl-dyninstAmerican Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries
Stars: ✭ 65 (-62.64%)
wordlistsAggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.
Stars: ✭ 94 (-45.98%)
LibAFLAdvanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
Stars: ✭ 1,348 (+674.71%)
FirmWireFirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares
Stars: ✭ 555 (+218.97%)
zap-sonar-pluginIntegrates OWASP Zed Attack Proxy reports into SonarQube
Stars: ✭ 66 (-62.07%)
QasanQASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.
Stars: ✭ 246 (+41.38%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+68.97%)
py3webfuzzA Python3 module to assist in fuzzing web applications
Stars: ✭ 54 (-68.97%)
fuzzing-101-solutionsCompanion repository to the Fuzzing101 with LibAFL series of blog posts.
Stars: ✭ 93 (-46.55%)
unicorn-fuzzerexpansion of afl-unicorn using c++
Stars: ✭ 25 (-85.63%)
giniA fast SAT solver
Stars: ✭ 139 (-20.11%)
CertfuzzThis project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).
Stars: ✭ 233 (+33.91%)
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+1497.13%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (+27.59%)
targets🎯 A collection of fuzzing targets written in Rust.
Stars: ✭ 91 (-47.7%)
roboxtractorExtract endpoints marked as disallow in robots files to generate wordlists.
Stars: ✭ 40 (-77.01%)
UafuzzUAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities
Stars: ✭ 217 (+24.71%)
ras-fuzzerRAS(RAndom Subdomain) Fuzzer
Stars: ✭ 42 (-75.86%)
SDASDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.
Stars: ✭ 98 (-43.68%)
ronin-supportA support library for Ronin. Like activesupport, but for hacking!
Stars: ✭ 23 (-86.78%)
RegaxorA regular expression fuzzer.
Stars: ✭ 35 (-79.89%)
jitanaA graph-based static-dynamic hybrid DEX code analysis tool
Stars: ✭ 35 (-79.89%)
augurPerformant taint analysis for Node.js
Stars: ✭ 30 (-82.76%)
RTSPhuzzRTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework
Stars: ✭ 33 (-81.03%)
awesome-api-securityA collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Stars: ✭ 2,079 (+1094.83%)
kbdyschA collection of user-space Linux kernel specific guided fuzzers based on LKL
Stars: ✭ 62 (-64.37%)
SlothSloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation
Stars: ✭ 91 (-47.7%)
fuzz-rest-apiDerive property based testing fast-check into a fuzzer for REST APIs
Stars: ✭ 38 (-78.16%)
Fuzzcheck RsStructure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.
Stars: ✭ 247 (+41.95%)
PersonalStuffThis is a repo is to upload files done during my research.
Stars: ✭ 94 (-45.98%)
GrizzlyA cross-platform browser fuzzing framework
Stars: ✭ 234 (+34.48%)
titanmThis repository contains the tools we used in our research on the Google Titan M chip
Stars: ✭ 149 (-14.37%)
FilesensorDynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具
Stars: ✭ 227 (+30.46%)
sortcheckTool for detecting violations of ordering axioms in qsort/bsearch callbacks.
Stars: ✭ 23 (-86.78%)
Trophy Case🏆 Collection of bugs uncovered by fuzzing Rust code
Stars: ✭ 225 (+29.31%)
StochFuzzSound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting
Stars: ✭ 165 (-5.17%)
FuzzitCLI to integrate continuous fuzzing with Fuzzit
Stars: ✭ 220 (+26.44%)
allsafeIntentionally vulnerable Android application.
Stars: ✭ 135 (-22.41%)
JfsConstraint solver based on coverage-guided fuzzing
Stars: ✭ 215 (+23.56%)
virgoCrowdsourced fuzzing cluster. 🚀
Stars: ✭ 21 (-87.93%)
RapidRapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")
Stars: ✭ 213 (+22.41%)
aparoidStatic and dynamic Android application security analysis
Stars: ✭ 62 (-64.37%)
BerserkerA list of useful payloads for Web Application Security and Pentest/CTF
Stars: ✭ 212 (+21.84%)
KaflA fuzzer for full VM kernel/driver targets
Stars: ✭ 204 (+17.24%)
SourceWolfAmazingly fast response crawler to find juicy stuff in the source code! 😎🔥
Stars: ✭ 132 (-24.14%)