An open API service indexing awesome lists of open source software.

Fuzzing/Fuzz testing

Fuzzing or fuzz testing is an automated software black box testing technique that evaluates the program’s reaction to providing invalid, unexpected, or random data as inputs to a computer program.

https://github.com/vanhauser-thc/fuzzing-targets

Some fuzzing targets for testing

fuzz fuzz-testing fuzzing

Last synced: 04 Jan 2026

https://github.com/pandatix/go-abnf

Augmented Backus-Naur Form (ABNF) in Go. Implements RFC 5234 and 7405, with Errata 2968 and 3076.

abnf backtracking fuzzing golang grammar graph regex rfc5234 rfc7405

Last synced: 12 May 2025

https://github.com/stevenjohnstone/afl-lua

Fork of Lua adding AFL (https://github.com/google/afl) instrumentation to allow Lua scripts (not the VM itself) to be fuzzed.

afl-fuzz aflpluspplus fuzzing lua

Last synced: 01 Feb 2026

https://github.com/Enigma-Dark/runes

A CLI tool that converts Echidna fuzzer reproducer .txt files into executable Foundry test files.

developer-tools echidna ethereum foundry fuzzing

Last synced: 13 Jul 2025

https://github.com/ninedraft/huffy

Tiny package for smart testcase caching

fuzzing go golang test-automation-project test-generation testing unit-test

Last synced: 10 Mar 2026

https://github.com/pthariensflame/salmagundi

A tool to rewrite data type definitions to rearrange in-memory layout.

fuzzing rust-language testing-tools

Last synced: 10 Apr 2025

https://github.com/jrconlin/cookie_munger

A stupid idea to abuse the hell out of cookies, because who doesn't like fuzzy cookies?

cookies fuzzing python

Last synced: 14 Apr 2025

https://github.com/fkie-cad/61850-fuzzing

This repository provides fuzzing scripts to analyze an IEC 61850 implementation

fuzzing

Last synced: 02 Sep 2025

https://github.com/ispras/fuzzeddataprovidercs

FuzzedDataProvider for C#, inspired by Google's FuzzedDataProvider.

csharp fuzzing structure structureaware wrapper

Last synced: 10 Apr 2025

https://github.com/literallyethical/r3conwhal3

r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing performance and resource consumption through a concurrency-based approach.

automation-framework bug-bounty-tools bugbounty dns fuzzing osint pentest pentest-tool recon reconnaissance scanner security security-tools subdomain-enumeration subdomain-scanner

Last synced: 15 Dec 2025

https://github.com/asatarin/testing-sql-databases

Curated list of materials on testing SQL database engines

correctness database fuzzing testing

Last synced: 02 Sep 2025

https://github.com/serhatcck/hidden_fuzzer

Hidden Fuzzer is a URL fuzzing tool designed to uncover hidden paths and resources on web applications. It features multithreading, customizable HTTP headers, and request parameters for optimized performance.

bugbounty bugbounty-tool fuzzing pentest-tool security-tools url-fuzzer webpentest

Last synced: 14 Jan 2026

https://github.com/xsscx/windows

Welcome to Hoyt's Windows Fuzzing Repo

exploit fuzzing windows

Last synced: 14 Mar 2026

https://github.com/0xricksanchez/docker_fuzz

GH repo for the docker fuzz container that contains all necessary tools to get started with binary fuzzing and debugging

afl-fuzz fuzzing gdb honggfuzz libfuzzer pwndbg radamsa rr triage

Last synced: 05 Mar 2025

https://github.com/ross-spencer/big-list-of-naughty-files

A file-generator tool wrapping the Big List of Naughty Strings

digipres fuzzing

Last synced: 27 May 2026

https://github.com/vinsoc-cyber/vulnhunterx

A Python framework for combining static analysis with LLM-based bug verification

codeql fuzzing llm semgrep static-analysis vulnerability vulnerability-verification

Last synced: 12 Jun 2026

https://github.com/langston-barrett/czz

Whole-program, Scheme-scriptable, multi-language, coverage-guided fuzzer

fuzzing scheme

Last synced: 07 May 2025

https://github.com/form3tech-oss/go-ci-fuzz

A tool for running Native Go Fuzz tests in CI pipelines

ci fuzzing go testing

Last synced: 09 Oct 2025

https://github.com/mattjegan/wtfuzz

A pip-installable tool used for checking the existence of different types of web resources

cli fuzzing python security security-scanner security-tools

Last synced: 30 Dec 2025

https://github.com/rootup/fuzzingvim

Fuzzing VIM

afl-fuzz fuzzing vim

Last synced: 01 May 2025

https://github.com/jaydhulia/go-url-fuzz

URL Fuzzer in Go - Find hidden directories!

bugbounty fuzzing go

Last synced: 22 Jun 2025

https://github.com/0xdea/from-day-zero-to-zero-day

My code and notes for "From Day Zero to Zero Day", a book on vulnerability research by Eugene Lim.

code-review fuzzing reverse-engineering vulnerability-research

Last synced: 30 Sep 2025

https://github.com/trailofbits/deepstate-test-suite

Automated continuous testing integration using DeepState

fuzzing symbolic-execution unit-testing

Last synced: 15 Apr 2025

https://github.com/jmcph4/fuzzbang

Python 3 package providing basic fuzzing support

fuzz fuzz-testing fuzzer fuzzing python security vulnerability-detection

Last synced: 07 Apr 2025

https://github.com/rarecoil/mqtt-packet-fuzzy

Radamsa-backed, hooked mqtt-packet for blind MQTT protocol fuzzing on Mac, Linux and Windows.

fuzzing mqtt mqtt-packet mqttjs radamsa security

Last synced: 01 Jul 2025

https://github.com/n0kovo/danish_phone_wordlist_generator

Generate wordlists of Danish phone numbers by area and/or usage (Mobile, landline etc.) Useful for password cracking or fuzzing Danish targets.

fuzzing infosec osint pentesting redteam-tools wordlist wordlist-generator

Last synced: 14 Apr 2025

https://github.com/cwshugg/gurthang

[Masters Thesis] A connection-multiplexing web server fuzzing harness for AFL++.

afl aflplusplus fuzzing networking security systems-programming

Last synced: 19 Apr 2025

https://github.com/bountyhacking/Payloads_Tool_box

At this repo you can find any tools, tricks or templates for general penetration testing assesment

bounty bounty-hunting-tools bug bugbounty burpsuite curl fuzzing payload payloads pentesting sqli sqlmap tty xss

Last synced: 10 Mar 2025

https://github.com/jwilk/fuzzing

Jakub's fuzzing goodies

fuzzing security

Last synced: 12 Apr 2025

https://github.com/rodnt/bffuf

Burp bridge to FFUF

bugbounty bugs burp ffuf fuzzing pentest portswigger

Last synced: 30 Jan 2026

https://github.com/garbles/fuzz-utils

🎲 Utilities for fuzzing

fuzzing javascript random random-generation typescript

Last synced: 12 May 2025

https://github.com/aw-junaid/fuzzing-for-security-testing

Learn fuzzing techniques for vulnerability discovery: AFL, libFuzzer, and custom fuzzers. Includes examples, tools, and tips for effective software testing.

fuzz-testing fuzzing security security-fuzzing

Last synced: 06 Jan 2026

https://github.com/zubux/pyfuzzer

Quick 'n' dirty file format fuzzer utilizing zzuf mutation techniques

fuzzing python zzuf

Last synced: 12 Sep 2025

https://github.com/quasilyte/phpsmith

phpsmith creates random PHP and KPHP programs to test their compilers and runtimes

code-generator codesmith fuzzer fuzzing kphp php testing

Last synced: 19 Mar 2025

https://github.com/dergoegge/semsan

Semantics Sanitizer: Fuzz Driven Characterization Testing

differential-fuzzing fuzzing

Last synced: 11 Sep 2025

https://github.com/shad0w-ops/subfuzzer

A simple python fuzzer tool created for the soul purpose of bruteforcing subdomains

bruteforce enumeration fuzzing subdomain-enumeration

Last synced: 12 Apr 2025

https://github.com/weixian-zhang/fuzzie

A VSCode GUI-based fuzzer for Rest API and GraphQL

fuzzing python3 rest-api security vscode-extension

Last synced: 30 Dec 2025

https://github.com/picobaz/pyformblaster

PyFormBlaster: A sleek Python web form fuzzer for ethical security audits. Blast forms with random and malicious inputs to uncover XSS, SQL Injection, and more. Features auto-field detection, CSV logging, and modular config. Test responsibly!

cybersecurity ethical-hacking form-fuzzer fuzzing penetration-testing python security web-security

Last synced: 09 Oct 2025

https://github.com/emrekybs/nse-webdirscanner

This Nmap script performs a comprehensive directory scan on a specified web server, checking for the presence of common directories and their HTTP status codes.

dirbuster fuzzing nmap nmap-scan-script nmap-scripts nse webdirscan webscanner

Last synced: 11 Oct 2025

https://github.com/jmcph4/mph

Python API for interfacing with arbitrary executables

binary-analysis executable fuzzing host managed python subprocess

Last synced: 27 Oct 2025

https://github.com/sumit03guha/smart-contracts-development-boilerplate

A boilerplate repository for smart contracts development, based on hardhat and includes foundry fuzzing.

ethereum ethersjs foundry fuzzing hardhat hardhat-boilerplate solidity truffle typescript yarn

Last synced: 12 Apr 2025

https://github.com/skalt/monkey-see-monkey-vue

Monkey-testing utility for vue.js applications 🍌

code-quality fuzz-testing fuzzing monkey-test test-generation testing-tools vue vuejs2

Last synced: 05 Feb 2026

https://github.com/mischau8/rtt-fuzzer

Fuzzer for Rally the Troops!

boardgames fuzzing

Last synced: 12 Apr 2025

https://github.com/kchousos/bsc-thesis

My BSc Thesis on fuzzing automation through LLMs.

bsc-thesis fuzzing neurosymbolic-ai quarto-book university-of-athens

Last synced: 19 Feb 2026

https://github.com/mheidari98/web-fuzzer

simple Web Fuzzer for detect XSSi, SQLi, Blind SQLi, OSi and Blind OSi

fuzzing penetration-testing python sql-injection vulnerability-scanner xss

Last synced: 31 Jul 2025

https://github.com/ligurio/lua-c-api-corpus

Lua C API seed corpus and dictionaries

fuzzing lua luajit oss-fuzz

Last synced: 09 Apr 2025

https://github.com/indspl0it/blue-tap

Blue-Tap is a comprehensive Bluetooth and BLE penetration testing toolkit designed specifically for security assessments of automotive In-Vehicle Infotainment (IVI) systems. It provides a complete attack lifecycle — from passive device discovery through active exploitation, data extraction, and automated report generation.

ble bluetooth fuzzing ivi pentesting security vulnerability-research

Last synced: 17 Apr 2026

https://github.com/vulnpire/banshee-ai

AI-powered high‑speed Google & Brave dorking tool for reconnaissance and OSINT.

ai bug-bounty dorking fuzzing hacking osint reconnaissance red-teaming

Last synced: 05 Apr 2026

https://github.com/henryhchchc/lsp-fuzz

A grey-box hybrid fuzzer that generates test cases for language servers

fuzzing language-server-protocol libafl lsp

Last synced: 13 Oct 2025

https://github.com/orbitinghail/precept

A testing utility for fuzzing and fault injection to discover erroneous and interesting states.

fault-injection fuzzing testing

Last synced: 27 Jun 2025

https://github.com/ropwareJB/jwtfuzz

Library for fuzzing & attacking JSON Web Tokens (JWTs). Bindings for other languages included.

bug-bounty bug-bounty-tools bugbounty fuzz fuzzing hacking hacking-tool jwt jwt-token pentesting pentesting-tools security

Last synced: 10 Mar 2025

https://github.com/ant4g0nist/chinfuzz

Tezos smart contract fuzzer

chinstrap fuzzing ligo smartpy tezos tezos-client

Last synced: 11 Jul 2025

https://github.com/hsluoyz/spikefuzzui

A network protocol fuzzing test software with UI on Windows

fuzz-testing fuzzing security visual-studio windows

Last synced: 08 Sep 2025

https://github.com/0x1nf3cted/reqfuzz

ReqFuzz: everything is fuzzable if you have the right tool ;)

fuzzing headers http pentesting proxy sandbox web

Last synced: 18 Jul 2025

https://github.com/dergoegge/btcser

Descriptor language for Bitcoin's serialization format

bitcoin fuzzing structure-aware-fuzzing

Last synced: 30 Oct 2025

https://github.com/lakshayd02/exploit_development_framework_c

A C-based exploit development framework and fuzzing tool designed to test application robustness and security by generating random payloads and targeting vulnerabilities. Automate vulnerability discovery and improve application resilience! 🛡️

c exploit-development exploitation-framework fuzzing fuzzing-tool

Last synced: 10 Apr 2025

https://github.com/rarecoil/sinkdweller

A TypeScript-based frontend to the radamsa fuzzer. No dependencies on most platforms.

cygwin fuzzing node-fuzzer nodejs radamsa typescript windows

Last synced: 01 Jul 2025

https://github.com/blaind/bevy_fuzz

Experimental high-performance fuzz-testing for bevy systems, emulating user UI interaction

bevy fuzzing rust testing

Last synced: 26 Oct 2025

https://github.com/sgabe/poc

Collection of various crash samples from miscellaneous sources.

crash-reports fuzzing poc

Last synced: 24 Feb 2026

https://github.com/jeffh/check.statem

Facilities for generating test programs using state machines.

clojure fuzzing property-based-testing quickcheck state-machine test-check testing

Last synced: 07 Oct 2025

https://github.com/jwilk/detsan

determinism sanitizer

fuzzing qa security

Last synced: 08 May 2025

https://github.com/ryarmst/fuzzdeep

An Android Deep Link Fuzzer

android appsec fuzzing pentest security

Last synced: 30 Apr 2026

https://github.com/ligurio/afl-lua

Integration of AFL (American Fuzzy Lop) with Lua programming language. Superseded by https://github.com/ligurio/luzer.

afl-fuzz aflplusplus fuzzing lua luajit

Last synced: 27 Mar 2025

https://github.com/n0kovo/random-agent

Simply output a random user-agent. Use it with tools that don't have a --random-agent flag. Like `random-agent` or $(random-agent)

appsec bug-bounty bug-bounty-tools bugbounty bugbounty-tool bugbountytools fuzzer fuzzing infosec infosectools pentesting pentesting-tools redteam-tools web-app-security webfuzzer

Last synced: 04 Feb 2026

https://github.com/littledivy/dfuzz

libFuzzer based JS/TS fuzzer.

deno fuzzing libfuzzer typescript

Last synced: 28 Oct 2025

https://github.com/neomutt/corpus-address

📚 Test data for fuzzing

corpus fuzzing testing

Last synced: 19 Mar 2026

https://github.com/0xricksanchez/afl_runner

AFLPlusPlus command generator to make the best use of multiple cores

afl aflplusplus fuzzer fuzzing multiprocessing multithreading tmux

Last synced: 13 Apr 2025

https://github.com/rappie/portfolio

Rappie's Portfolio

evm fuzzing portfolio security solidity

Last synced: 02 Mar 2025

https://github.com/bad-antics/Fuzz.jl

Security fuzzing toolkit for Julia — mutation, generation, and coverage-guided fuzzing

fuzzing julia mutation-fuzzing security testing

Last synced: 06 Apr 2026

https://github.com/marcellomaugeri/hardening-7-fuzzing

Material of the Hardening 7 talk: "Fuzzing: l'arte di scoprire vulnerabilitĂ  in maniera automatizzata"

coverage-guided-fuzzing cve-2021-3156 fuzzing fuzzing-cve-2021-3156 poc-cve-2021-3156 talk

Last synced: 06 Apr 2025

https://github.com/one2blame/the-dark-arts

Repository to contain my notes from my self-study of binary exploitation and reverse engineering.

binary-diffing binary-exploitation ctf fuzzing reverse-engineering symbolic-execution

Last synced: 07 Jan 2026

https://github.com/mrcl0wnlab/gambashell

GambaShell program made to facilitate the processes in the linux terminal

fuzzing gambas3 interface linux tool vb

Last synced: 19 Jan 2026

https://github.com/pigeonhands/fuzz-rs

HTTP Directory Fuzzer/Buster written in Rust similar to dirbuster.

buster fuzzing pentesting rust-lang tool web

Last synced: 09 Apr 2025

https://github.com/frewsxcv/ruby-coverage-guided-fuzzer

PoC fuzzer written in Ruby for Ruby powered by Ruby’s built-in coverage library.

coverage-guided-fuzzing fuzz-testing fuzzing ruby

Last synced: 06 Apr 2025

https://github.com/evian-zhang/lava-m-docker

LAVA-M in Docker ubuntu 22.04

docker fuzzing lava-m

Last synced: 02 May 2026

https://github.com/dobin/ffweb

A webgui to view crash information of fuzzing runs (FFW)

ffw fuzzing webinterface

Last synced: 08 Oct 2025

https://github.com/bluntbrain/invariant-testing-foundry

A comprehensive guide to Foundry's testing capabilities including Fuzz Testing and Invariant Testing

foundry fuzzing invariants solidity

Last synced: 17 Feb 2026

https://github.com/toktok/toktok-fuzzer

TokTok fuzzing corpus and coverage results.

fuzzing tox

Last synced: 14 Apr 2025

https://github.com/mozillasecurity/mozilla-build-configs

Build configurations of Firefox for Fuzzing and Sanitizer builds.

build-configuration configs development firefox fuzzing

Last synced: 29 Dec 2025

https://github.com/lem0nsec/subdue

A Python3 Compact Subdomain Fuzzing Tool for CTFs

ctf fuzzing

Last synced: 27 Feb 2026

https://github.com/dergoegge/fuzzor

Experimental continuous fuzzing infrastructure

fuzzing

Last synced: 28 Feb 2026

https://github.com/officialcjunior/fuzzrtos

fuzzrtos is a structure-aware fuzzer for the Free-RTOS kernel.

freertos fuzzer fuzzing protocol-buffers

Last synced: 19 Mar 2026

https://github.com/peiwithhao/hacker-university-of-peiwithhao

peiwithhao's learning journey in network/system security

archlinux course cve fuzzing linux-kernel linux-kernel-module university

Last synced: 09 Apr 2025