385 Open source projects that are alternatives of or similar to titanm

Android application fuzzing framework with fuzzers and crash monitor.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Find exploitable PHP files by parameter fuzzing and function call tracing

Automatic Exploit Generation Paper

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

Fuzz your Rust code with Google-developed Honggfuzz !

MediaTek Fuzzing Workshop in HITCON 2021

Rapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")

gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.

RAS(RAndom Subdomain) Fuzzer

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

AFL-based fuzz testing for .NET

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.

UAFuzz: Binary-level Directed Fuzzing for Use-After-Free Vulnerabilities

Pure C++, weaponized, fully automated implementation of RottenPotatoNG

A list of useful payloads for Web Application Security and Pentest/CTF

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

coverage guided fuzz testing for java

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

Simple script for generating Malformed QRCodes.

整理一些内网常用渗透小工具

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

A high performance offensive security tool for reconnaissance and vulnerability scanning

Dockerfile for AFL++ and helpful other tools

Seeding fuzzers with symbolic execution

Domain-Specific Fuzzing with Waypoints

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

American Fuzzy Lop + Dyninst == AFL Fuzzing blackbox binaries

🏆 Collection of bugs uncovered by fuzzing Rust code

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

CLI to integrate continuous fuzzing with Fuzzit

Hourly updated database of exploit and exploitation reports

Constraint solver based on coverage-guided fuzzing

Crowdsourced fuzzing cluster. 🚀

Rockyou for web fuzzing

Borrowed Instructions Synthetic Computation

A fuzzer for full VM kernel/driver targets

JavaFuzz 4 Android

Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

Sound and Cost-effective Fuzzing of Stripped Binaries by Incremental and Stochastic Rewriting

Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

vfuzz

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

coverage guided fuzz testing for python

Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Structure-aware, in-process, coverage-guided, evolutionary fuzzing engine for Rust functions.

An open source fuzzing framework for fun.

Fuzzinator Random Testing Framework

ANTLR v4 grammar-based test generator

A regular expression fuzzer.

QASan is a custom QEMU 3.1.1 that detects memory errors in the guest using AddressSanitizer.

Fuzzing and Data Manipulation Framework (for GNU/Linux)

Custom memory allocator that helps discover reads from uninitialized memory

A cross-platform browser fuzzing framework

Contextual Bandits in R - simulation and evaluation of Multi-Armed Bandit Policies