Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Fuzzing/Fuzz testing
Fuzzing or fuzz testing is an automated software black box testing technique that evaluates the program’s reaction to providing invalid, unexpected, or random data as inputs to a computer program.
- GitHub: https://github.com/topics/fuzzing
- Wikipedia: https://en.wikipedia.org/wiki/Fuzzing
- Created by: Barton Miller
- Released: September 1988
- Related Topics: stress-testing, fault-injection, monkey-testing, random-testing, security-testing, test-automation, mutation-testing, cicd, black-box-testing,
- Aliases: fuzz-testing, api-fuzzing,,
- Last updated: 2024-11-04 00:11:24 UTC
- JSON Representation
https://github.com/thepudds/fzgen
Auto-gen Go fuzzing wrappers from normal code. Finds buggy call sequences, including data races & deadlocks. Supports rich signature types.
Last synced: 27 Oct 2024
https://github.com/oxagast/ansvif
A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
exploit fuzz-testing fuzzer fuzzing pentesting quality-control vulnerability
Last synced: 27 Oct 2024
https://github.com/siemens/fluffi
FLUFFI (Fully Localized Utility For Fuzzing Instantaneously) - A distributed evolutionary binary fuzzer for pentesters
Last synced: 04 Aug 2024
https://github.com/agroce/tstl
Template Scripting Testing Language tool: automated test generation for Python
afl afl-fuzz delta-debugging fault-localization fuzzers fuzzing property-based property-based-testing python random-testing swarm-testing test-automation test-generation test-reduction testing testing-tools tstl
Last synced: 26 Oct 2024
https://github.com/kostas-pa/LFITester
LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.
bugbounty crawler cybersecurity enumeration exploitation fuzzing hacking lfi lfi-detection lfi-exploitation lfi-vulnerability penetration-testing penetration-testing-tools pentest-tool pentesting python web-hacking webhacking
Last synced: 04 Aug 2024
https://github.com/ymherklotz/verismith
Verilog Fuzzer to test the major simulators and sythesisers by generating random, valid Verilog.
Last synced: 01 Nov 2024
https://github.com/zac-hd/hypothesmith
Hypothesis strategies for generating Python programs, something like CSmith
Last synced: 31 Oct 2024
https://github.com/riza/medusa
Fastest recursive HTTP fuzzer, like a Ferrari.
Last synced: 03 Aug 2024
https://github.com/zjuchenyuan/dockerized_fuzzing
Run fuzzing experiments in Docker
Last synced: 04 Aug 2024
https://github.com/Agnoctopus/Tartiflette
Snapshot fuzzing with KVM and LibAFL
fuzzing kvm libafl virtualization
Last synced: 04 Aug 2024
https://github.com/thehlopster/hfuzz
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
bugbounty fuzz fuzzing hacking pentesting security web-fuzzing wordlist
Last synced: 02 Aug 2024
https://github.com/javierolmedo/ultimatecmswordlists
📚 An ultimate collection wordlists of the best-known CMS
cms cms-framework dictionary drupal fuzz fuzzing hacking joomla security web-security web-security-research wordlist wordpress
Last synced: 11 Oct 2024
https://github.com/JavierOlmedo/UltimateCMSWordlists
📚 An ultimate collection wordlists of the best-known CMS
cms cms-framework dictionary drupal fuzz fuzzing hacking joomla security web-security web-security-research wordlist wordpress
Last synced: 04 Aug 2024
https://github.com/vanhauser-thc/afl-patches
Patches to afl to fix bugs or add enhancements
afl afl-fuzz afl-fuzzer fuzzer fuzzing
Last synced: 26 Sep 2024
https://github.com/dyjakan/interpreter-bugs
Fuzzing results for various interpreters.
bugs fuzzing hhvm interpreter php python ruby security security-research vulnerabilities
Last synced: 20 Aug 2024
https://github.com/TCA-ISCAS/Cooper
A tool for effective testing the binding layer of scripting languages
Last synced: 01 Aug 2024
https://github.com/jonathansalwan/ttexplore
TTexplore is a library that performs path exploration on binary code using symbolic execution
Last synced: 29 Oct 2024
https://github.com/atrosinenko/kbdysch
A collection of user-space Linux kernel specific guided fuzzers based on LKL
afl filesystem fuzzing linux-kernel lkl
Last synced: 03 Aug 2024
https://github.com/amossys/fragscapy
Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.
evasion firewall fuzzing ids network
Last synced: 03 Aug 2024
https://github.com/AMOSSYS/Fragscapy
Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.
evasion firewall fuzzing ids network
Last synced: 02 Aug 2024
https://github.com/vanhauser-thc/afl-pin
run AFL with pintool
afl afl-fuzz afl-fuzzer binary-instrument fuzzer fuzzing pin pintool thc
Last synced: 28 Oct 2024
https://github.com/langston-barrett/tree-crasher
Easy-to-use grammar-based black-box fuzzer. Has found dozens of bugs in important targets like Clang, Deno, and rustc.
black-box-testing fuzzer fuzzing grammar-based grammar-based-fuzzing
Last synced: 30 Oct 2024
https://github.com/sec-tools/litefuzz
A multi-platform fuzzer for poking at userland binaries, network clients and servers
exploit fuzzing fuzzing-framework security vulnerability
Last synced: 02 Aug 2024
https://github.com/kmarkela/duffman
Fuzzer and Lightweight CLI Client for Postman Collections
api-pentest api-testing fuzz-testing fuzzer fuzzing postman postman-collection
Last synced: 31 Oct 2024
https://github.com/intel/ccc-linux-guest-hardening
Linux Security Hardening for Confidential Compute
fuzzing security security-tools
Last synced: 02 Aug 2024
https://github.com/yangr0/rbust
[ Blazing Fast Web Fuzzer in Rust ]
automated-testing cli directory-bruteforce fuzzer fuzzing hack hacking hacking-tool multi-thread pentest pentest-scripts pentest-tool pentesting pentesting-tools rust rust-lang rustlang security-tools thread
Last synced: 12 Oct 2024
https://github.com/olipratt/swagger-conformance
Python based tool for testing whether your API conforms to its Swagger schema
fuzzing open-api property-based-testing swagger swagger-schema
Last synced: 13 Oct 2024
https://github.com/yangr0/RBust
[ Blazing Fast Web Fuzzer in Rust ]
automated-testing cli directory-bruteforce fuzzer fuzzing hack hacking hacking-tool multi-thread pentest pentest-scripts pentest-tool pentesting pentesting-tools rust rust-lang rustlang security-tools thread
Last synced: 02 Nov 2024
https://github.com/Josue87/roboxtractor
Extract endpoints marked as disallow in robots files to generate wordlists.
bug-bounty bugbounty enumeration fuzzing hacking wordlist
Last synced: 04 Aug 2024
https://github.com/christhecoolhut/easy-pickings
Automatic function exporting and linking for fuzzing cross-architecture binaries.
Last synced: 16 Oct 2024
https://github.com/unibuc-cs/river
Fuzz testing framework for binary programs using AI
Last synced: 03 Aug 2024
https://github.com/snorez/srcinv
source code audit tool
audit fuzzing kernel linux open-source qa
Last synced: 04 Aug 2024
https://github.com/supercilex/ftzz
File Tree Fuzzer creates a pseudo-random directory hierarchy filled with some number of files.
cli directory-tree files fuzzing rust
Last synced: 30 Oct 2024
https://github.com/qlyoung/lagopus
Distributed fuzzing platform
cluster fuzzing kubernetes security
Last synced: 28 Oct 2024
https://github.com/cytopia/fuzza
Customizable TCP fuzzing tool to test for remote buffer overflows.
buffer-overflow buffer-overflow-attack cytopia-sec fuzzer fuzzers fuzzing
Last synced: 22 Oct 2024
https://github.com/seelengrab/supposition.jl
A Julia implementation of choice sequence based PBT, inspired by Hypothesis
fuzzing julia julia-language julialang pbt property-based-testing testing
Last synced: 12 Oct 2024
https://github.com/r0x4r/scvault
Custom scripts for directory fuzzing, subdomain enumeration, and more.
automation bash-script bug-bounty bug-bounty-hunters bugbounty directory-busting ffuf fuzzing infosec interlace
Last synced: 15 Oct 2024
https://github.com/R0X4R/scvault
Custom scripts for directory fuzzing, subdomain enumeration, and more.
automation bash-script bug-bounty bug-bounty-hunters bugbounty directory-busting ffuf fuzzing infosec interlace
Last synced: 04 Aug 2024
https://github.com/planetis-m/libfuzzer
Thin interface for libFuzzer, an in-process, coverage-guided, evolutionary fuzzing engine.
fuzzing hacking security unit-testing
Last synced: 03 Aug 2024
https://github.com/IncludeSecurity/RTSPhuzz
RTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework
0day fuzzer fuzzing mozilla-open-source research-tool rtsp rtsp-server sponsored
Last synced: 04 Aug 2024
https://github.com/squeek502/zig-std-lib-fuzzing
A set of fuzzers for fuzzing various parts of the Zig standard library
Last synced: 14 Oct 2024
https://github.com/0xSobky/Regaxor
A regular expression fuzzer.
fuzzing regex regexp regular-expression tools
Last synced: 26 Sep 2024
https://github.com/jaybosamiya/fuzzing-numpy
:snake: Experiments in trying to find 0-days in numpy
0day experimental fuzzing numpy security
Last synced: 02 Nov 2024
https://github.com/ligurio/luzer
A coverage-guided, native Lua fuzzing engine.
Last synced: 30 Oct 2024
https://github.com/15r10nk/pysource-codegen
generate random python code to test linter/formatter/and other tools
Last synced: 31 Oct 2024
https://github.com/dubzzz/fuzz-rest-api
Derive property based testing fast-check into a fuzzer for REST APIs
fast-check fuzzing property-based-testing quickcheck rest-api
Last synced: 28 Oct 2024
https://github.com/fornwall/advent-of-code
🎄Advent of Code with Rust 🦀
advent-of-code fuzzing pyo3 rust webassembly
Last synced: 27 Oct 2024
https://github.com/xsscx/xnuimagefuzzer
XNU Image Fuzzer - iOS App for Fuzzing Images with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw Data and String Injection.
crash debugging exploit file fuzz fuzzing graphics image imagefuzzer interposing ios iosonmac macos objective-c research security utt xcode xnu
Last synced: 12 Oct 2024
https://github.com/suecodelabs/cnfuzz
Breaking Cloud Native Web APIs in their natural habitat.
aws aws-s3 cicd cloud-native data-lake fuzzing golang kubernetes microsoft openapi openapi-spec opensource rest-api rest-api-test restler security-tools service-mesh
Last synced: 14 Oct 2024
https://github.com/jxy-s/vfdynf
Application Verifier Dynamic Fault Injection
application-verifier debugging-tool fuzzing verifier windows
Last synced: 27 Oct 2024
https://github.com/vanhauser-thc/afl-dynamorio
run AFL with dynamorio
afl afl-fuzz afl-fuzzer binary-instrument dynamorio fuzzer fuzzing thc
Last synced: 28 Oct 2024
https://github.com/thypon/androidfuzz
JavaFuzz 4 Android
android apk fuzz fuzzing instrument java javafuzz-android
Last synced: 15 Oct 2024
https://github.com/vanhauser-thc/libfuzzer-cov
Get actually nice HTML coverage overview on libfuzzer runs
Last synced: 28 Oct 2024
https://github.com/nstarke/bootfuzz
A MBR Fuzzer
boot-sector fuzzer fuzzing mbr nasm security-tools
Last synced: 29 Oct 2024
https://github.com/RootUp/PHDays9
My fuzzing workshop from PHDays9
afl afl-fuzz fuzzing phdays workshop workshop-materials
Last synced: 01 Nov 2024
https://github.com/ronin-rb/ronin-support
A support library for Ronin. Like activesupport, but for hacking!
binary cidr core-ext ctf-tool ctf-tools dns encoding encoding-convertors encoding-decoding fuzzing hacking-library hacktoberfest http infosec library networking ronin-rb ruby ssl wordlist
Last synced: 06 Aug 2024
https://github.com/spolu/gym_fuzz1ng
OpenAI Gym environment for binary fuzzing based on afl
afl deep-learning fuzzing openai-gym
Last synced: 15 Oct 2024
https://github.com/cestef/rwalk
A blazingly fast web directory scanner written in Rust
Last synced: 31 Oct 2024
https://github.com/vanhauser-thc/peachpro
Dockerfile for peach pro with everything set up as needed
fuzz fuzzer fuzzing peach peach-fuzzer
Last synced: 13 Oct 2024
https://github.com/nscuro/bradamsa-ng
Burp Suite extension for Radamsa-powered fuzzing with Intruder
bradamsa burp burp-extensions burpsuite fuzzing intruder radamsa windows-subsystem-for-linux wsl
Last synced: 04 Aug 2024
https://github.com/vanhauser-thc/afl-simulate
Simulate afl-fuzz
afl afl-fuzz afl-fuzzer fuzzer fuzzing instrumentation
Last synced: 13 Oct 2024
https://github.com/dogancanbakir/pirebok
pîrebok (from Kurdish "witch") - a guided adversarial fuzzer
adversarial cybersecurity fuzzer fuzzing hacktoberfest ml sql
Last synced: 28 Oct 2024
https://github.com/user1342/AutoCorpus
AutoCorpus is a tool backed by a large language model (LLM) for automatically generating corpus files for fuzzing.
corpus-generator dynamic-analysis fuzzing large-language-models llm vulnerability-research
Last synced: 26 Sep 2024
https://github.com/hupe1980/scan4log4shell
Scanner to send specially crafted requests and catch callbacks of systems that are impacted by log4j log4shell vulnerability and to detect vulnerable log4j versions on your local file-system
auth blue-team cve-2021-44228 cve-2021-45046 cve-2021-45105 dns form-detection fuzzing log4j log4shell rce red-team scanner vulnerability waf-bypass
Last synced: 17 Oct 2024
https://github.com/p0dalirius/http-fuzzing-scripts
A collection of http fuzzing python scripts to fuzz HTTP servers for bugs.
Last synced: 29 Oct 2024
https://github.com/Traumatism/raycharles
Blind RCE fuzzer
bugbounty command-injection fuzz fuzzer fuzzing hacking injection pwn rce remote-code-execution
Last synced: 23 Oct 2024
https://github.com/squeek502/zig-fuzzing-example
An example of fuzzing Zig code with AFL++
example-project fuzz-testing fuzzing zig
Last synced: 14 Oct 2024
https://github.com/ashvardanian/libsee
Link to this library and it will log all the LibC functions you are calling and how much time you are spending in them!
assembly benchmark benchmarking fuzzing glibc ld-preload ld-preload-hack libc
Last synced: 28 Oct 2024
https://github.com/vogtinator/usbredir2phys
Turns virtual usbredir connections into physical ones
fuzzing linux usb usb-devices usb-gadget
Last synced: 11 Oct 2024
https://github.com/orbitcowboy/afl_cppcheck
A script to start fuzzing of cppcheck with american fuzzy lop
afl-fuzz cplusplus cppcheck fuzzing
Last synced: 01 Nov 2024
https://github.com/ivan-sincek/wordlist-extender
Extend wordlist by appending digits and special characters to each word.
brute-force bug-bounty cracking dictionary-attack ethical-hacking fuzzing offensive-security penetration-testing python red-team-engagement security wordlist wordlist-extender wordlist-generator
Last synced: 16 Oct 2024
https://github.com/ivan-sincek/websocket-bf
Brute force a REST API query through WebSocket. Based on cURL.
bash brute-force cracking curl dictionary-attack ethical-hacking fuzzing networking offensive-security rest-api security websocket
Last synced: 16 Oct 2024
https://github.com/MozillaSecurity/prefpicker
Manage & generate prefs.js files
automated-testing automation firefox fuzz fuzzing test testing
Last synced: 30 Oct 2024
https://github.com/agroce/muttfuzz
A tool for meta-fuzzing using program mutants
fuzzing fuzzing-framework meta-fuzzing mutation-testing
Last synced: 27 Oct 2024
https://github.com/tree-sitter/afl-tree-sitter
AFL test harness for tree-sitter runtime and parsers
Last synced: 07 Oct 2024
https://github.com/foospidy/fuzzcat
Rudimentary network protocol fuzzer using bash, netcat, and other tools.
application-security bash fuzzer fuzzing netcat network-security
Last synced: 03 Aug 2024
https://github.com/wirzka/wordlists
General repository where I put my/others wordlists
ctf dirb dirbuster fuzzing gobuster metasploit wfuzz wordlists
Last synced: 14 Oct 2024
https://github.com/vanhauser-thc/fuzzing-targets
Some fuzzing targets for testing
Last synced: 13 Oct 2024
https://github.com/ivan-sincek/amounts
Generate a wordlist to fuzz amounts or any other numerical values.
amounts brute-force bug-bounty dictionary-attack ethical-hacking finance fuzzing offensive-security penetration-testing prices python quantities security wordlist-generator
Last synced: 16 Oct 2024
https://github.com/troglobit/libc-chaos
Emit random errors when calling libc functions to emulate an unstable underlying system
Last synced: 27 Oct 2024
https://github.com/shafiuzzaman-md/Rare-Path-Guided-Fuzzing
Rare-Path Guided Fuzzing
Last synced: 23 Oct 2024
https://github.com/namuan/fuzzy-swagger
API fuzz testing generator using swagger document.
api fuzz-testing fuzzing openapi python swagger testing
Last synced: 18 Oct 2024
https://github.com/jrconlin/cookie_munger
A stupid idea to abuse the hell out of cookies, because who doesn't like fuzzy cookies?
Last synced: 01 Nov 2024
https://github.com/RobinCPel/graphql-postman
Converts a GraphQL schema to a Postman Collection v2.1.
api-fuzzing docker fuzz fuzz-testing fuzzing gitlab gitlab-api-fuzzing gitlab-ci go golang gql graphql graphql-introspection postman
Last synced: 04 Nov 2024
https://github.com/pthariensflame/salmagundi
A tool to rewrite data type definitions to rearrange in-memory layout.
fuzzing rust-language testing-tools
Last synced: 12 Oct 2024
https://github.com/langston-barrett/czz
Whole-program, Scheme-scriptable, multi-language, coverage-guided fuzzer
Last synced: 02 Nov 2024
https://github.com/jaydhulia/go-url-fuzz
URL Fuzzer in Go - Find hidden directories!
Last synced: 04 Nov 2024
https://github.com/mattjegan/wtfuzz
A pip-installable tool used for checking the existence of different types of web resources
cli fuzzing python security security-scanner security-tools
Last synced: 01 Aug 2024
