fuzz
There are 121 repositories under fuzz topic.
1N3/IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Bo0oM/fuzz.txt
Potentially dangerous files
gh0stkey/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
tom0li/collection-document
Collection of quality safety articles. Awesome articles.
evilc0deooo/PentesterSpecialDict
构建优化高效的渗透 fuzz 字典合集
swisskyrepo/GraphQLmap
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
c0ny1/upload-fuzz-dic-builder
上传漏洞fuzz字典生成脚本
vaycore/OneScan
OneScan 是一款用于递归目录扫描的 BurpSuite 插件
ffffffff0x/AboutSecurity
Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
0xPugal/fuzz4bounty
1337 Wordlists for Bug Bounty Hunting
7dog7/bottleneckOsmosis
瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
ghostsecurity/reaper
💀 Don't fear the Reaper 👻
rust-fuzz/honggfuzz-rs
Fuzz your Rust code with Google-developed Honggfuzz !
RedTeamPentesting/monsoon
Fast HTTP enumerator
KissPeter/APIFuzzer
Fuzz test your application using your OpenAPI or Swagger API definition without coding
Brum3ns/firefly
Black box fuzzer for web applications
koutto/ioctlbf
Windows Kernel Drivers fuzzer
Ackee-Blockchain/trident
Rust-based framework to Fuzz Solana programs, designed to help you ship secure code.
ameenmaali/qsfuzz
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
microsoft/rest-api-fuzz-testing
REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows
camshaft/bolero
property testing and verification front-end for Rust
payloadbox/directory-payload-list
🎯 Directory Payload List
tamimhasan404/Wordlist404
Small but effective wordlist for brute-forcing and discovering hidden things.
LyleMi/Browser-Fuzz-Summarize
Browser Fuzz Summarize / 浏览器模糊测试综述
hackingyseguridad/diccionarios
Diccionarios de: usuarios, passwords, XSS, ficheros, carpetas, dorks, etc .. ( hackingyseguridad.com )
KajanM/DirBuster
DirBuster is a multi threaded java application designed to brute force directories and files names on web/application servers.
ehmicky/test-each
🤖 Repeat tests. Repeat tests. Repeat tests.
thehlopster/hfuzz
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
Magnushhoie/fuz
Fuz is a blazingly fast text, file and folder search tool
monkeym4ster/DomainFuzz
Domain name permutation engine for detecting typo squatting, phishing and corporate espionage
ad1992/fuzzify
A tiny lightweight library for Fuzzy Search
JavierOlmedo/UltimateCMSWordlists
📚 An ultimate collection wordlists of the best-known CMS
hexian2001/HRP-Nnepnep-auto-pwn
基于pwntools+angr的简单CTF AMD64 PWN AUTO FUZZ
smasterfree/api-fuzz
python restful api fuzz test
fagci/h4ck
Hacking tools. IP fortune, webmap -- web vulns scanner, rtsp brute+fuzz, and more.
xsscx/xnuimagefuzzer
XNU Image Fuzzer - iOS App for Fuzzing Images with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw Data and String Injection.