238 Open source projects that are alternatives of or similar to Qasan

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

coverage guided fuzz testing for python

A fork of AFL for fuzzing Windows binaries

Command line tool for testing CRLF injection on a list of domains.

Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记

HTML5 WebSocket message fuzzer

Rockyou for web fuzzing

A container repository for my public web hacks!

An open source fuzzing framework for fun.

Resources About Fuzzing, For Multiple Platforms And All Popular Fuzzers. 500+ Open Source Tools Sorted By Star Count, 800+ Blog Posts Sorted By Publish Time.

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

Reflective testing.

Constraint solver based on coverage-guided fuzzing

FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.

vfuzz

wooyun public information backup

🏆 Collection of bugs uncovered by fuzzing Rust code

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Seeding fuzzers with symbolic execution

A fuzzing library in JavaScript. ✨

A fuzzer for full VM kernel/driver targets

DOM fuzzer

ANTLR v4 grammar-based test generator

Canadian Furious Beaver is a tool for hijacking IRPs handler in Windows drivers, and facilitating the process of analyzing Windows drivers for vulnerabilities

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

coverage guided fuzz testing for java

Janus: a state-of-the-art file system fuzzer on Linux

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

A user-friendly fuzzing and crash triage tool for Windows

AFL-based fuzz testing for .NET

Randomly mutate JSON, XML, HTML forms, text and binary data for fuzz testing

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows

Simple script for generating Malformed QRCodes.

The Art, Science, and Engineering of Fuzzing: A Survey

Rapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")

A fast SAT solver

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

Bugs are inevitable. Suffering is optional.

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

A collection of various awesome lists for hackers, pentesters and security researchers

A high performance offensive security tool for reconnaissance and vulnerability scanning

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

A list of useful payloads for Web Application Security and Pentest/CTF

A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.

Domain-Specific Fuzzing with Waypoints

Hacking tools

Fuzz your Rust code with Google-developed Honggfuzz !

Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis

Fuzzinator Random Testing Framework

🤖 Repeat tests. Repeat tests. Repeat tests.

gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.

Fuzzing and Data Manipulation Framework (for GNU/Linux)

A cross-platform browser fuzzing framework

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

CLI to integrate continuous fuzzing with Fuzzit

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Custom memory allocator that helps discover reads from uninitialized memory