Select a tag to browse associated projects and drill deeper into the tag cloud.
zzuf
Analyzed 27 days ago
zzuf is a transparent application input fuzzer. Its purpose is to find bugs in applications by corrupting their user-contributed data (which more than often comes from untrusted sources on the Internet). It works by intercepting file and network operations and changing random bits in the program’s
Mostly written in language not available
Licenses:
WTFPL_2_0
American fuzzy lop
A
Analyzed 27 days ago
American fuzzy lop is a fuzzer that uses compile-time instrumentation and genetic algorithms. It can perform fuzzing with high code coverage in an efficient way, and with essentially no configuration.
Licenses:
apache_2
WinAppDbg module for Python
Analyzed 3 months ago
The WinAppDbg python module allows developers to quickly code instrumentation scripts in Python under a Windows environment.
It uses ctypes to wrap many Win32 API calls related to debugging, and provides an object-oriented abstraction layer to manipulate threads, libraries and processes, attach
Mostly written in language not available
Licenses:
No declared licenses
Fusil
F
Analyzed 27 days ago
Fusil project is a fuzzing program. Today, it's specific to Linux command line program, but the code is designed to be used with any project type (remote process, fake HTTP server, fuzz network socket, etc.). New Fusil implementation is now based on multi-agent system instead monolithic architecture.
Chaos HTTP Proxy
C
Analyzed 28 days ago
Introduce failures into HTTP requests via a proxy server
Licenses:
apache_2
sulley
S
Analyzed 27 days ago
Sulley is a fuzzer development and fuzz testing framework consisting of multiple extensible components. Sulley (IMHO) exceeds the capabilities of most previously published fuzzing technologies, commercial and public domain. The goal of the framework is to simplify not only data representation but to
Space Monkey
S
Analyzed 27 days ago
SpaceMonkey is a Web application auditing tool. It can detect bugs or security flaws without using a knowledge database. It uses fault injection technics ('fuzzing') in order to reveal the flaws (SQL injection, XSS, File inclusion, command execution ).
Licenses:
No declared licenses