fuzz

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Potentially dangerous files

Web Fuzzing Box - Web 模糊测试字典与一些Payloads

Collection of quality safety articles. Awesome articles.

构建优化高效的渗透 fuzz 字典合集

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

上传漏洞fuzz字典生成脚本

OneScan 是一款用于递归目录扫描的 BurpSuite 插件

Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.

1337 Wordlists for Bug Bounty Hunting

瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf

💀 Don't fear the Reaper 👻

Fuzz your Rust code with Google-developed Honggfuzz !

Fast HTTP enumerator

Fuzz test your application using your OpenAPI or Swagger API definition without coding

Black box fuzzer for web applications

Windows Kernel Drivers fuzzer

Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows