381 Open source projects that are alternatives of or similar to PersonalStuff

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

Rockyou for web fuzzing

X41 Smartcard Fuzzer

A fuzzer for full VM kernel/driver targets

JavaFuzz 4 Android

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

expansion of afl-unicorn using c++

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

vfuzz

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Intentionally vulnerable Android application.

Seeding fuzzers with symbolic execution

Serverless plugin for securing your dependencies with Snyk

An open source fuzzing framework for fun.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

ANTLR v4 grammar-based test generator

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

Custom memory allocator that helps discover reads from uninitialized memory

记录自己在看 afl 源码时候的一些笔记和想法，还有一些自己觉得有意思的魔改。2020年12月2日update：添加混合模糊测试目录

Resources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.

A fork of AFL for fuzzing Windows binaries

My Material for the HITB presentation

Reflective testing.

Hourly updated database of exploit and exploitation reports

🤖 Repeat tests. Repeat tests. Repeat tests.

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

HTML5 WebSocket message fuzzer

BSOD: Binary-only Scalable fuzzing Of device Drivers

wooyun public information backup

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

Anchore container analysis and scan provided as a GitHub Action

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation

A container repository for my public web hacks!

This repository contains the tools we used in our research on the Google Titan M chip

A fuzzing library in JavaScript. ✨

Structure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.

Command line tool for testing CRLF injection on a list of domains.

Tool for breaking into web applications.

DOM fuzzer

A cross-platform browser fuzzing framework

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Multi source CVE/exploit parser.

FuZZan: Efficient Sanitizer Metadata Design for Fuzzing

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives

won't maintain

Script to test open Akamai ARL vulnerability.

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

A blackbox mutational fuzzer for detecting critical bugs in SMT solvers

BrundleFuzz is a distributed fuzzer for Windows and Linux using dynamic binary instrumentation.

Extract endpoints marked as disallow in robots files to generate wordlists.