Trending repositories for topic fuzzing
A collection of various awesome lists for hackers, pentesters and security researchers
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-mode...
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Developme...
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
A high performance offensive security tool for reconnaissance and vulnerability scanning
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
Command line tool for testing CRLF injection on a list of domains.
Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-mode...
Curated list of classic fuzzing books, papers about fuzzing at information security top conferences over the years, commonly used fuzzing tools, and resources that can help us use fuzzer easily.
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
A collection of various awesome lists for hackers, pentesters and security researchers
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
A curated list of awesome Fuzzing(or Fuzz Testing) for software security
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
A collection of various awesome lists for hackers, pentesters and security researchers
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
A comparison of solidity fuzzing tools Foundry, Echidna & Medusa
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
An step by step fuzzing tutorial. A GitHub Security Lab initiative
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Developme...
A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to sca...
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
A comparison of solidity fuzzing tools Foundry, Echidna & Medusa
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
[Custom || Automated] Curation & Collection of BugBounty Wordlists
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
A fun script to steal Ether from wallets suffering from insufficient entropy during key generation.
A coverage-guided fuzzer for pure Ruby code and Ruby C extensions
Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.
A collection of tools for security research on Starlink's User Terminal
✨ Purpose only! The dangers of Bluetooth Low Energy(BLE)implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
Curated list of classic fuzzing books, papers about fuzzing at information security top conferences over the years, commonly used fuzzing tools, and resources that can help us use fuzzer easily.
Command line tool for testing CRLF injection on a list of domains.
Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
A collection of various awesome lists for hackers, pentesters and security researchers
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
An step by step fuzzing tutorial. A GitHub Security Lab initiative
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Developme...
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
A comparison of solidity fuzzing tools Foundry, Echidna & Medusa
A list of resources (papers, books, talks, frameworks, tools) for understanding fuzzing for IoT/embedded devices.
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
A coverage-guided fuzzer for pure Ruby code and Ruby C extensions
[Custom || Automated] Curation & Collection of BugBounty Wordlists
[CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.
A Julia implementation of choice sequence based PBT, inspired by Hypothesis
Curated list of classic fuzzing books, papers about fuzzing at information security top conferences over the years, commonly used fuzzing tools, and resources that can help us use fuzzer easily.
[VscanPlus内外网漏洞扫描工具]已更新HW热门漏洞检测POC。基于veo师傅的漏扫工具vscan二次开发的版本,端口扫描、指纹检测、目录fuzz、漏洞扫描功能工具,批量快速检测网站安全隐患。An open-source, cross-platform website vulnerability scanning tool that helps you quickly detect web...
[VscanPlus内外网漏洞扫描工具]已更新HW热门漏洞检测POC。基于veo师傅的漏扫工具vscan二次开发的版本,端口扫描、指纹检测、目录fuzz、漏洞扫描功能工具,批量快速检测网站安全隐患。An open-source, cross-platform website vulnerability scanning tool that helps you quickly detect web...
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
TangGo测试平台是无糖信息技术有限公司集多年渗透测试实战经验设计和开发的国产化综合性测试平台,为软件测试、网络安全从业人员提供强大且易用的测试工具及多人协同的工作环境,主要用于Web站点的功能测试、安全测试和安全评估。
A powerful tool for automated LLM fuzzing. It is designed to help developers and security researchers identify and mitigate potential security vulnerabilities in their LLM APIs.
[CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.
Scaling best-practice AFLPlusPlus fuzzing campaigns made easy and more
A Julia implementation of choice sequence based PBT, inspired by Hypothesis
AutoCorpus is a tool backed by a large language model (LLM) for automatically generating corpus files for fuzzing.
Track the values and addresses of slots (storage variables in Solidity) inside the Ethereum contract, as well as tracking logs (Solidity events).
XNU Image Fuzzer - iOS App for Fuzzing Images with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw Data and String Injection.
Reproduction of the $41M Curve reentrancy hacks on July 30 2023 using on-chain fuzzing with Echidna
A collection of various awesome lists for hackers, pentesters and security researchers
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
An step by step fuzzing tutorial. A GitHub Security Lab initiative
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Hypothesis is a powerful, flexible, and easy to use library for property-based testing.
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Developme...
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
Property based testing framework for JavaScript (like QuickCheck) written in TypeScript
Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_std, ...
BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.
[Custom || Automated] Curation & Collection of BugBounty Wordlists
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
🔋amp-devcontainer is a batteries-included devcontainer useable for modern, embedded, software development
generate random python code to test linter/formatter/and other tools
A comparison of solidity fuzzing tools Foundry, Echidna & Medusa
A set of fuzzers for fuzzing various parts of the Zig standard library
Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.
