Fuzzing/Fuzz testing

A collection of various awesome lists for hackers, pentesters and security researchers

Web path scanner

OSS-Fuzz - continuous fuzzing for open source software.

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

the champagne of beta embedded databases

You Know, For WEB Fuzzing ! 日站用的字典。

The property-based testing library for Python

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

syzkaller is an unsupervised coverage-guided kernel fuzzer

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

Scalable fuzzing infrastructure.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Randomized testing for Go

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

An step by step fuzzing tutorial. A GitHub Security Lab initiative

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

A high performance offensive security tool for reconnaissance and vulnerability scanning