805 Open source projects that are alternatives of or similar to Libdiffuzz

🔎 shodansploit > v1.3.0

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

grep rough audit - source code auditing tool

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

Recent Fuzzing Paper

coverage guided fuzz testing for java

Linux命令转发记录

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

🏆 Collection of bugs uncovered by fuzzing Rust code

NebulousAD automated credential auditing tool.

A curated list of awesome Fuzzing(or Fuzz Testing) for software security

Ghidra Analysis Enhancer 🐉

memory search and patch tool on debuggable apk without root & ndk

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A Blazing fast Security Auditing tool for Kubernetes

All-in-one tool for managing vulnerability reports from AppSec pipelines

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

Fuzz testing for jest

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

secureCodeBox (SCB) - continuous secure delivery out of the box

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

Web Pentesting Fuzz 字典,一个就够了。

A friendly car security exploration tool for the CAN bus

Web-based Source Code Vulnerability Scanner

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Secure, Unified, Powerful and Extensible Rust Android Analyzer

一键提取安卓应用中可能存在的敏感信息。

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Awesome .NET Security Resources

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

📖 Guides and tutorials on how to fuzz Rust code

A curated list of awesome directed fuzzing research papers

🤖 Repeat tests. Repeat tests. Repeat tests.

A tool to test security of json web token

snopf USB password token

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Wordpress Vulnerability Scanner

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

A fast SAT solver

wooyun public information backup

Reflective testing.

Bugs are inevitable. Suffering is optional.

outis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

A CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.

Kubernetes Common Configuration Scoring System

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

🚿 Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

Work in progress firewall for Linux syscalls, written in Rust

A note-taking macOS app for penetration-testers.

Web Application recon automation