381 Open source projects that are alternatives of or similar to PersonalStuff

run AFL with pintool

Fuzzing Unification Framework

A grammar-based custom mutator for AFL++

American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

run AFL with dynamorio

OpenType font file format fuzzer for Windows

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

AFL binary instrumentation

Scalable fuzzing infrastructure.

OSS-Fuzz - continuous fuzzing for open source software.

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Mutation Based Fuzzer for IEC61850 Server IED'S

RAS(RAndom Subdomain) Fuzzer

Pretty vulnerable flask app..

essential templates for kenzer

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Dockerfile for AFL++ and helpful other tools

A regular expression fuzzer.

A Python3 module to assist in fuzzing web applications

Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.

Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.

EasyBuggy clone built on Django

A collection of user-space Linux kernel specific guided fuzzers based on LKL

RTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework

MediaTek Fuzzing Workshop in HITCON 2021

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

X41 Smartcard Fuzzer

JavaFuzz 4 Android

expansion of afl-unicorn using c++

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

Intentionally vulnerable Android application.

Serverless plugin for securing your dependencies with Snyk

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

记录自己在看 afl 源码时候的一些笔记和想法，还有一些自己觉得有意思的魔改。2020年12月2日update：添加混合模糊测试目录

My Material for the HITB presentation

Hourly updated database of exploit and exploitation reports

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

BSOD: Binary-only Scalable fuzzing Of device Drivers

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Anchore container analysis and scan provided as a GitHub Action

Derive property based testing fast-check into a fuzzer for REST APIs

Yet Another Vulnerability Database

Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation

This repository contains the tools we used in our research on the Google Titan M chip

Android application fuzzing framework with fuzzers and crash monitor.

Structure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.

Tool for breaking into web applications.

FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares

Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

A cross-platform browser fuzzing framework

Multi source CVE/exploit parser.

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具