116 Open Source Fuzzer Software Projects
Free and open source fuzzer code projects including engines, APIs, generators, and tools.
Aflplusplus 2422 ⭐
The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
1n3 Blackwidow 1060 ⭐
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Angora 742 ⭐
Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.
Mozillasecurity Dharma 450 ⭐
Generation-based, context-free grammar fuzzer. Refer to https://github.com/posidron/dharma for a maintained version.
Afl Utils 390 ⭐
Utilities for automated crash sample processing/analysis, easy afl-fuzz job management and corpus optimization
Gramfuzz 221 ⭐
gramfuzz is a grammar-based fuzzer that lets one define complex grammars to generate text and binary data formats.
Liamg Scout 285 ⭐
🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
Fisy Fuzz 124 ⭐
This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.
Libprotobuf Mutator_fuzzing_learning 165 ⭐
Learn how to combine libprotobuf-mutator with libfuzzer & AFL++
Ansvif 108 ⭐
A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Iofuzz 61 ⭐
A mutation based user mode (ring3) dumb in-memory Windows Kernel (IOCTL) Fuzzer/Logger. This script attach it self to any given process and hooks DeviceIoControl!Kernel32 API and try to log or fuzz all I/O Control code I/O Buffer pointer, I/O buffer length that process sends to any Kernel driver.
Security Utilities 39 ⭐
Offensive Security Certified Profesional (OSCP) course scripts, some have been generalized
Burpcontextawarefuzzer 29 ⭐
BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JSON; XML; GWT; binary) and following encoding-scheme applied originally.
Sweetmon_legacy 16 ⭐
'SWEETMON' is a fuzzer monitoring service based python3 + django. User can check their fuzzers and crashes on the web. It can reduce repetitive work for fuzz testers. This is a legacy sweetmon. The new sweetmon is now being developed https://github.com/sweetchipsw/sweetmon2
Prjuray 33 ⭐
Documenting the Xilinx Ultrascale, Ultrascale+ and UltraScale MPSoC series bit-stream format.
Universalmigparser 13 ⭐
Extract and generate code based on name and type for mig func/arg/request&reply member etc, ideal helper for creating monitor, tracker, fuzzer etc for Mach Remote Procedure Calls.
0vercl0k Wtf 797 ⭐
wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows.
Hawkscan 301 ⭐
Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)
Fpicker 160 ⭐
fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)