scancode.ioScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
Stars: ✭ 66 (-29.79%)
KaflA fuzzer for full VM kernel/driver targets
Stars: ✭ 204 (+117.02%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (+111.7%)
HonggfuzzSecurity oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)
Stars: ✭ 2,400 (+2453.19%)
CyberQueensCyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩💻👨💻
Stars: ✭ 30 (-68.09%)
PapersAcademic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
Stars: ✭ 181 (+92.55%)
polscanZero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities
Stars: ✭ 57 (-39.36%)
Vfuzzvfuzz
Stars: ✭ 178 (+89.36%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+212.77%)
allsafeIntentionally vulnerable Android application.
Stars: ✭ 135 (+43.62%)
KleeflSeeding fuzzers with symbolic execution
Stars: ✭ 172 (+82.98%)
serverless-snykServerless plugin for securing your dependencies with Snyk
Stars: ✭ 40 (-57.45%)
MorphAn open source fuzzing framework for fun.
Stars: ✭ 166 (+76.6%)
PatrowlHearsDataOpen-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds
Stars: ✭ 66 (-29.79%)
GrammarinatorANTLR v4 grammar-based test generator
Stars: ✭ 162 (+72.34%)
fuzzing-101-solutionsCompanion repository to the Fuzzing101 with LibAFL series of blog posts.
Stars: ✭ 93 (-1.06%)
LibdiffuzzCustom memory allocator that helps discover reads from uninitialized memory
Stars: ✭ 147 (+56.38%)
Chinese noted AFL记录自己在看 afl 源码时候的一些笔记和想法,还有一些自己觉得有意思的魔改。2020年12月2日update:添加混合模糊测试目录
Stars: ✭ 82 (-12.77%)
Fuzzing StuffResources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.
Stars: ✭ 144 (+53.19%)
WinaflA fork of AFL for fuzzing Windows binaries
Stars: ✭ 1,826 (+1842.55%)
ReflektReflective testing.
Stars: ✭ 128 (+36.17%)
inthewilddbHourly updated database of exploit and exploitation reports
Stars: ✭ 127 (+35.11%)
Test Each🤖 Repeat tests. Repeat tests. Repeat tests.
Stars: ✭ 89 (-5.32%)
PocOrExp in Github聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
Stars: ✭ 544 (+478.72%)
FormatfuzzerFormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
Stars: ✭ 117 (+24.47%)
cwe-toolA command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
Stars: ✭ 40 (-57.45%)
Wooyunwooyun public information backup
Stars: ✭ 112 (+19.15%)
CertfuzzThis project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).
Stars: ✭ 233 (+147.87%)
Fisy FuzzThis is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
Stars: ✭ 110 (+17.02%)
scan-actionAnchore container analysis and scan provided as a GitHub Action
Stars: ✭ 140 (+48.94%)
AnsvifA Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Stars: ✭ 107 (+13.83%)
SlothSloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation
Stars: ✭ 91 (-3.19%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+1351.06%)
titanmThis repository contains the tools we used in our research on the Google Titan M chip
Stars: ✭ 149 (+58.51%)
OctoA fuzzing library in JavaScript. ✨
Stars: ✭ 96 (+2.13%)
Fuzzcheck RsStructure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.
Stars: ✭ 247 (+162.77%)
jawfishTool for breaking into web applications.
Stars: ✭ 84 (-10.64%)
DomatoDOM fuzzer
Stars: ✭ 1,303 (+1286.17%)
GrizzlyA cross-platform browser fuzzing framework
Stars: ✭ 234 (+148.94%)
Ble Security Attack Defence✨ Purpose only! The dangers of Bluetooth Low Energy(BLE)implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
Stars: ✭ 88 (-6.38%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-73.4%)
FuzzanFuZZan: Efficient Sanitizer Metadata Design for Fuzzing
Stars: ✭ 81 (-13.83%)
FilesensorDynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具
Stars: ✭ 227 (+141.49%)
ArcheapArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives
Stars: ✭ 80 (-14.89%)
Slideswon't maintain
Stars: ✭ 79 (-15.96%)
akamai-arl-hackScript to test open Akamai ARL vulnerability.
Stars: ✭ 70 (-25.53%)
Bugs-feedBug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...
Stars: ✭ 90 (-4.26%)
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+2856.38%)
StormA blackbox mutational fuzzer for detecting critical bugs in SMT solvers
Stars: ✭ 79 (-15.96%)
BrundlefuzzBrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.
Stars: ✭ 78 (-17.02%)
roboxtractorExtract endpoints marked as disallow in robots files to generate wordlists.
Stars: ✭ 40 (-57.45%)