Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Fuzzing/Fuzz testing

Fuzzing or fuzz testing is an automated software black box testing technique that evaluates the program’s reaction to providing invalid, unexpected, or random data as inputs to a computer program.

https://github.com/softsec-kaist/eclipser

Grey-box Concolic Testing on Binary Code (ICSE '19)

concolic-testing fsharp fuzzer fuzzing testcase-generator

Last synced: 14 Nov 2024

https://github.com/SoftSec-KAIST/Eclipser

Grey-box Concolic Testing on Binary Code (ICSE '19)

concolic-testing fsharp fuzzer fuzzing testcase-generator

Last synced: 09 Nov 2024

https://github.com/elceef/subzuf

a smart DNS response-guided subdomain fuzzer

dns fuzzing subdomain-enumeration

Last synced: 18 Dec 2024

https://github.com/softsec-kaist/smartian

Smartian: Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses (ASE '21)

fsharp fuzzer fuzzing smart-contract-testing static-analyzer

Last synced: 19 Dec 2024

https://github.com/ant4g0nist/manufuzzer

Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM

apple fuzzing libfuzzer llvm-mc macos

Last synced: 22 Dec 2024

https://github.com/ksharinarayanan/SourceWolf

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

automation broken-link-hijacking bugbounty fuzzing osint reconnaissance wordlist

Last synced: 09 Nov 2024

https://github.com/quarkslab/samsung-trustzone-research

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

bindings emulation exploitation fuzzing kinibi reverse-engineering samsung tooling trustzone

Last synced: 10 Nov 2024

https://github.com/michaelstott/crlf-injection-scanner

Command line tool for testing CRLF injection on a list of domains.

bugbounty cli crlf fuzzer fuzzing security-vulnerability

Last synced: 01 Nov 2024

https://github.com/MichaelStott/CRLF-Injection-Scanner

Command line tool for testing CRLF injection on a list of domains.

bugbounty cli crlf fuzzer fuzzing security-vulnerability

Last synced: 24 Oct 2024

https://github.com/sslab-gatech/archeap

ArcHeap: Automatic Techniques to Systematically Discover New Heap Exploitation Primitives

fuzzing heap-exploitation

Last synced: 05 Nov 2024

https://github.com/0xricksanchez/fisy-fuzz

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

filesystem freebsd fuzzer fuzzing kernel kernel-panic kernels netbsd openbsd panic security-tools

Last synced: 10 Oct 2024

https://github.com/andresriancho/websocket-fuzzer

HTML5 WebSocket message fuzzer

appsec fuzzing html5 websocket

Last synced: 14 Nov 2024

https://github.com/epi052/fuzzing-101-solutions

Companion repository to the Fuzzing101 with LibAFL series of blog posts.

fuzzing hacktoberfest libafl rust

Last synced: 27 Oct 2024

https://github.com/aflplusplus/afl-snapshot-lkm

A Linux Kernel Module that implements a fast snapshot mechanism for fuzzing.

fuzzing snapshot

Last synced: 11 Nov 2024

https://github.com/Riscure/optee_fuzzer

This repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.

afl fuzzing op-tee trusted-execution-environment

Last synced: 01 Nov 2024

https://github.com/rootup/personalstuff

Upload files done during my research.

afl-fuzz fuzzing inputzero tcpdump telegram vulnerabilities

Last synced: 21 Dec 2024

https://github.com/malqr/malqr.github.io

MalQR is a collection of malicious QR Codes and Barcodes you can use to test the security of your scanners.

barcode ci fuzzing payload pentest qrcode sqli xss

Last synced: 18 Nov 2024

https://github.com/ise-uiuc/nnsmith

Automatic DNN generation for fuzzing and more

compiler deep-learning fuzzing machine-learning pytorch tensorflow

Last synced: 24 Dec 2024

https://github.com/HexHive/FuZZan

FuZZan: Efficient Sanitizer Metadata Design for Fuzzing

addresssanitizer fuzzing sanitizer

Last synced: 21 Nov 2024

https://github.com/hexhive/fuzzan

FuZZan: Efficient Sanitizer Metadata Design for Fuzzing

addresssanitizer fuzzing sanitizer

Last synced: 12 Nov 2024

https://github.com/ant4g0nist/sloth

Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emulation

android fuzzing libfuzzer qemu sloth

Last synced: 21 Nov 2024

https://github.com/mozillasecurity/octo

A fuzzing library in JavaScript. ✨

browser fuzzing fuzzing-framework generators library node random

Last synced: 18 Nov 2024

https://github.com/rust-fuzz/book

📖 Guides and tutorials on how to fuzz Rust code

documentation fuzz-testing fuzzing rust

Last synced: 19 Dec 2024

https://github.com/microsoft/sca-fuzzer

Revizor - a fuzzer to search for microarchitectural leaks in CPUs

fuzzing meltdown security side-channel spectre-vulnerability

Last synced: 23 Dec 2024

https://rust-fuzz.github.io/book/

📖 Guides and tutorials on how to fuzz Rust code

documentation fuzz-testing fuzzing rust

Last synced: 25 Oct 2024

https://github.com/agroce/afl-compiler-fuzzer

Variation of american fuzzy lop for testing compilers

afl afl-fuzz compiler-testing fuzzing fuzzing-compilers

Last synced: 27 Oct 2024

https://github.com/FuzzingLabs/cairo-fuzzer

Cairo/Starknet smart contract fuzzer

cairo cairo-lang fuzzer fuzzing starknet

Last synced: 14 Nov 2024

https://github.com/seemoo-lab/virtfuzz

VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.

fuzzing libafl linux-kernel

Last synced: 22 Dec 2024

https://github.com/Teebytes/TnT-Fuzzer

OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.

fuzzer fuzzing json-api openapi pentesting python security swagger

Last synced: 17 Nov 2024

https://github.com/phayes/sidefuzz

Fuzzer to automatically find side-channel (timing) vulnerabilities

constant-time cryptography dudect fuzzing rust side-channel wasm

Last synced: 03 Nov 2024

https://github.com/thepudds/fzgen

Auto-gen Go fuzzing wrappers from normal code. Finds buggy call sequences, including data races & deadlocks. Supports rich signature types.

fuzzing go testing

Last synced: 21 Dec 2024

https://github.com/oxagast/ansvif

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

exploit fuzz-testing fuzzer fuzzing pentesting quality-control vulnerability

Last synced: 09 Dec 2024

https://github.com/rust-fuzz/targets

🎯 A collection of fuzzing targets written in Rust.

fuzz-testing fuzzing rust

Last synced: 09 Nov 2024

https://github.com/siemens/fluffi

FLUFFI (Fully Localized Utility For Fuzzing Instantaneously) - A distributed evolutionary binary fuzzer for pentesters

fuzzing pentesting security

Last synced: 21 Nov 2024

https://github.com/ymherklotz/verismith

Verilog Fuzzer to test the major simulators and sythesisers by generating random, valid Verilog.

fuzzing verilog

Last synced: 25 Dec 2024

https://github.com/kostas-pa/LFITester

LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.

bugbounty crawler cybersecurity enumeration exploitation fuzzing hacking lfi lfi-detection lfi-exploitation lfi-vulnerability penetration-testing penetration-testing-tools pentest-tool pentesting python web-hacking webhacking

Last synced: 21 Nov 2024

https://github.com/zac-hd/hypothesmith

Hypothesis strategies for generating Python programs, something like CSmith

fuzzing hypothesis python

Last synced: 24 Dec 2024

https://github.com/zjuchenyuan/dockerized_fuzzing

Run fuzzing experiments in Docker

fuzzing

Last synced: 21 Nov 2024

https://github.com/riza/medusa

Fastest recursive HTTP fuzzer, like a Ferrari.

directory-finder fuzzing

Last synced: 16 Nov 2024

https://github.com/Agnoctopus/Tartiflette

Snapshot fuzzing with KVM and LibAFL

fuzzing kvm libafl virtualization

Last synced: 21 Nov 2024

https://github.com/crytic/optik

Optik is a set of symbolic execution tools that assist smart-contract fuzzers

echidna evm fuzzing maat security-tools smart-contracts symbolic-execution

Last synced: 22 Dec 2024

https://github.com/trailofbits/ruzzy

A coverage-guided fuzzer for pure Ruby code and Ruby C extensions

fuzzer fuzzing libfuzzer ruby ruby-extension ruby-gem

Last synced: 25 Dec 2024

https://github.com/thehlopster/hfuzz

Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.

bugbounty fuzz fuzzing hacking pentesting security web-fuzzing wordlist

Last synced: 09 Nov 2024

https://github.com/bazel-contrib/rules_fuzzing

Bazel Starlark extensions for defining fuzz tests in Bazel projects

bazel fuzzing

Last synced: 12 Nov 2024

https://github.com/softsec-kaist/ntfuzz

NTFUZZ: Enabling Type-Aware Kernel Fuzzing on Windows with Static Binary Analysis (IEEE S&P '21)

b2r2 binary-analysis fsharp fuzzer fuzzing kernel-fuzzer windows-kernel

Last synced: 14 Nov 2024

https://github.com/ariary/cfuzz

Command line fuzzer and bruteforcer 🌪 wfuzz for command

bruteforce bruteforcing cli fuzzing hacking pentest security

Last synced: 11 Nov 2024

https://github.com/vanhauser-thc/afl-patches

Patches to afl to fix bugs or add enhancements

afl afl-fuzz afl-fuzzer fuzzer fuzzing

Last synced: 26 Sep 2024

https://github.com/0xkayala/paramspider

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

fuzzing paramspider

Last synced: 11 Nov 2024

https://github.com/TCA-ISCAS/Cooper

A tool for effective testing the binding layer of scripting languages

fuzzing

Last synced: 07 Nov 2024

https://github.com/comby-tools/comby-reducer

A simple program reducer for any language.

fuzzing reducer rewriting transformation

Last synced: 18 Nov 2024

https://github.com/jonathansalwan/ttexplore

TTexplore is a library that performs path exploration on binary code using symbolic execution

fuzzing symbolic-execution

Last synced: 29 Oct 2024

https://github.com/amossys/fragscapy

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

evasion firewall fuzzing ids network

Last synced: 17 Nov 2024

https://github.com/ise-uiuc/freefuzz

Free Lunch for Testing: Fuzzing Deep-Learning Libraries from Open Source (ICSE'22)

fuzzing mining pytorch tensorflow

Last synced: 19 Nov 2024

https://github.com/atrosinenko/kbdysch

A collection of user-space Linux kernel specific guided fuzzers based on LKL

afl filesystem fuzzing linux-kernel lkl

Last synced: 18 Nov 2024

https://github.com/AMOSSYS/Fragscapy

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

evasion firewall fuzzing ids network

Last synced: 10 Nov 2024

https://github.com/wireghoul/doona

Network based protocol fuzzer

exploit fuzzer fuzzing perl security

Last synced: 28 Oct 2024

https://github.com/fkie-cad/luckycat

A distributed fuzzing management framework

firmware-analysis fuzzing fuzzing-framework

Last synced: 13 Nov 2024

https://github.com/Zac-HD/hypofuzz

Adaptive fuzzing of Hypothesis tests

fuzzing hypothesis testing

Last synced: 17 Nov 2024

https://github.com/zac-hd/hypofuzz

Adaptive fuzzing of Hypothesis tests

fuzzing hypothesis testing

Last synced: 12 Dec 2024

https://github.com/aflplusplus/fuzzer-challenges

Challenging testcases for fuzzers

fuzzing testing

Last synced: 11 Nov 2024

https://github.com/langston-barrett/tree-crasher

Easy-to-use grammar-based black-box fuzzer. Has found dozens of bugs in important targets like Clang, Deno, and rustc.

black-box-testing fuzzer fuzzing grammar-based grammar-based-fuzzing

Last synced: 25 Dec 2024

https://github.com/sec-tools/litefuzz

A multi-platform fuzzer for poking at userland binaries, network clients and servers

exploit fuzzing fuzzing-framework security vulnerability

Last synced: 09 Nov 2024

https://github.com/intel/ccc-linux-guest-hardening

Linux Security Hardening for Confidential Compute

fuzzing security security-tools

Last synced: 09 Nov 2024

https://github.com/xsscx/srd

Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.

apple arm arm64e asan assembler c clang code crosscompile cryptex device fuzzing ios lldb research security srd xnu

Last synced: 26 Dec 2024

https://github.com/perimetersec/public-fuzzing-campaigns-list

A list of public fuzzing campaigns

echidna evm foundry fuzzing medusa solidity

Last synced: 20 Nov 2024

https://github.com/yuawn/mediatek-fuzzing-workshop

MediaTek Fuzzing Workshop in HITCON 2021

automation education fuzzing security testing workshop

Last synced: 15 Dec 2024

https://github.com/rindphi/isla

The ISLa (Input Specification Language) language & solver.

constraints fuzzing grammars python smt strings

Last synced: 26 Dec 2024

https://github.com/kmarkela/duffman

Fuzzer and Lightweight CLI Client for Postman Collections

api-pentest api-testing fuzz-testing fuzzer fuzzing postman postman-collection

Last synced: 26 Dec 2024

https://github.com/htrgouvea/nozaki

HTTP fuzzer engine security oriented

api bugbounty fuzzer fuzzing graphql http nozaki perl research rest restfull security

Last synced: 18 Dec 2024

https://github.com/softsec-kaist/ankou

Ankou: Guiding Grey-box Fuzzing towards Combinatorial Difference (ICSE '20)

fuzzer fuzzing

Last synced: 14 Nov 2024

https://github.com/Josue87/roboxtractor

Extract endpoints marked as disallow in robots files to generate wordlists.

bug-bounty bugbounty enumeration fuzzing hacking wordlist

Last synced: 21 Nov 2024

https://github.com/olipratt/swagger-conformance

Python based tool for testing whether your API conforms to its Swagger schema

fuzzing open-api property-based-testing swagger swagger-schema

Last synced: 07 Nov 2024

https://github.com/adrianherrera/afl-mutation-graph

Recover mutation graph from an AFL seed

afl afl-fuzz fuzzing

Last synced: 08 Nov 2024

https://github.com/ispras/futag

FUTAG (FUzzing Target Automated Generator) - автоматический генератор фаззинг-оберток для библиотек

addresssanitizer automated-testing code-generator crash fuzzing llvm static-analysis

Last synced: 24 Nov 2024

https://github.com/christhecoolhut/easy-pickings

Automatic function exporting and linking for fuzzing cross-architecture binaries.

fuzzing

Last synced: 16 Oct 2024

https://github.com/unibuc-cs/river

Fuzz testing framework for binary programs using AI

fuzzing

Last synced: 18 Nov 2024

https://github.com/thekingofduck/copy2java

一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。

burp-plugin fuzzing java-script-generater

Last synced: 16 Nov 2024

https://github.com/cytopia/fuzza

Customizable TCP fuzzing tool to test for remote buffer overflows.

buffer-overflow buffer-overflow-attack cytopia-sec fuzzer fuzzers fuzzing

Last synced: 13 Dec 2024

https://github.com/snorez/srcinv

source code audit tool

audit fuzzing kernel linux open-source qa

Last synced: 21 Nov 2024

https://github.com/MozillaSecurity/orion

CI/CD pipeline for building and publishing multiple 🐳 containers as microservices within a mono repository.

automation ci-cd container docker fuzzing libfuzzer microservices monorepo

Last synced: 07 Nov 2024

https://github.com/supercilex/ftzz

File Tree Fuzzer creates a pseudo-random directory hierarchy filled with some number of files.

cli directory-tree files fuzzing rust

Last synced: 22 Dec 2024

https://github.com/qlyoung/lagopus

Distributed fuzzing platform

cluster fuzzing kubernetes security

Last synced: 28 Oct 2024

https://github.com/ant4g0nist/crashmon

crashmon - A LLDB Based replacement for CrashWrangler

crashwrangler fuzzing lldb macos triage

Last synced: 21 Nov 2024

https://github.com/fornwall/advent-of-code

🎄Advent of Code with Rust 🦀

advent-of-code fuzzing pyo3 rust webassembly

Last synced: 20 Dec 2024

https://github.com/airbus-seclab/aflplusplus-blogpost

Blogpost about optimizing binary-only fuzzing with AFL++

afl aflplusplus binary-only fuzzing qemu

Last synced: 16 Nov 2024