Discover the Best Open-Source Fuzzing Projects Sorted by Stars

A collection of various awesome lists for hackers, pentesters and security researchers

Web path scanner

OSS-Fuzz - continuous fuzzing for open source software.

the champagne of beta embedded databases

Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

Web Pentesting Fuzz 字典,一个就够了。

Scalable fuzzing infrastructure.

syzkaller is an unsupervised coverage-guided kernel fuzzer

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

Randomized testing for Go

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

HTTP parameter discovery suite.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!

Property based testing framework for JavaScript (like QuickCheck) written in TypeScript

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.