Awesome Fuzzing

Awesome Fuzzing

secfigo From United States

Awesome Fuzzing serves as a vital resource hub for those engaging in fuzz testing. It features a curated collection of books, courses, tutorials, and tools, including vulnerable applications for practical experience. This platform emphasizes root cause analysis and exploit development, equipping users with essential skills and knowledge in fuzzing methodologies.

Top Awesome Fuzzing Alternatives

Ad StackScan

StackScan

Use StackScan to discover the technologies powering websites, with insights across 50,000+ technology stacks and 105 million domains.

StackScan Pte Ltd
1 Atheris

Atheris

Atheris is a sophisticated coverage-guided fuzzing engine for Python, adept at testing both Python code and native CPython extensions. Built on libFuzzer, it excels in identifying vulnerabilities by leveraging Address Sanitizer and Undefined Behavior Sanitizer. Atheris supports multiple platforms and Python versions, ensuring seamless integration and effective bug detection.

Google From United States
2 BFuzz

BFuzz

BFuzz is an input-based fuzzer tool designed for browser testing. By utilizing HTML input, it opens a new browser instance and runs multiple test cases generated by the domato tool. This automation repeatedly executes tests without altering the test cases, supporting both Chrome and Firefox, while logging results efficiently.

RootUp From United States
3 API Fuzzer

API Fuzzer

API Fuzzer empowers users to identify vulnerabilities in their APIs by fuzzing request attributes using established pentesting techniques. By analyzing API requests, it uncovers potential risks such as SQL injection, cross-site scripting, and more. This tool streamlines vulnerability detection, making security assessments more efficient and user-friendly.

Fuzzapi From United States
4 Google ClusterFuzz

Google ClusterFuzz

ClusterFuzz is a robust, scalable fuzzing infrastructure designed to uncover security and stability issues in software. Leveraging advanced techniques, it automates bug filing and triage while supporting multiple fuzzing engines. With a user-friendly interface and seamless integration into development processes, it has identified thousands of vulnerabilities across numerous projects.

Google From United States
5 afl-unicorn

afl-unicorn

AFL-Unicorn enables users to fuzz binaries that can be emulated by the Unicorn Engine. By integrating block-edge instrumentation typically found in AFL’s QEMU mode, it effectively utilizes block coverage information to generate inputs. This innovative tool requires a Unicorn-based test harness to set initial states and manage data mutations.

Battelle From United States
6 Solidity Fuzzing Boilerplate

Solidity Fuzzing Boilerplate

Designed for efficiency, the Solidity Fuzzing Boilerplate simplifies the fuzzing of Solidity components, particularly libraries. Users can leverage Echidna and Foundry's fuzzing capabilities, deploy various Solidity versions in Ganache, and utilize HEVM's FFI cheat code for advanced fuzzing strategies, ensuring thorough testing across diverse scenarios.

patrickd From United States
7 Mayhem Code Security

Mayhem Code Security

Mayhem Code Security offers a cutting-edge AI-driven platform designed for industries like aerospace and medical. By simulating hacker behavior, it continuously tests applications, identifying both known and unknown vulnerabilities. Its self-learning machine learning technology autonomously generates thousands of tests per minute, providing prioritized defect reports and enabling developers to enhance software quality without recompiling code.

Mayhem From United States
8 Echidna

Echidna

Echidna is a sophisticated fuzz testing tool designed specifically for Ethereum smart contracts, utilizing Haskell for property-based testing. It performs grammar-based fuzzing to validate user-defined predicates against contract behaviors, ensuring safety. With modular design, it supports tailored inputs, automatic test minimization, and integration with various development workflows, enhancing bug detection efficiency.

Crytic From United States
9 ClusterFuzz

ClusterFuzz

ClusterFuzz serves as a robust fuzzing infrastructure designed to uncover security and stability vulnerabilities in software. With automatic bug filing and triage, it enhances software projects by integrating multiple fuzzing engines and providing valuable performance statistics. Its intuitive web interface and support for various authentication methods streamline management and analysis, aiding developers effectively.

Google From United States
10 Etheno

Etheno

Etheno serves as an innovative Ethereum testing tool, seamlessly integrating JSON RPC multiplexing and analysis. It simplifies the process of utilizing complex tools like Echidna for large multi-contract projects. Smart contract and Ethereum client developers benefit from its differential testing capabilities, enabling efficient deployment and interaction across multiple networks.

Crytic From United States
11 ImmuneBytes

ImmuneBytes

Offering robust audit services, ImmuneBytes enhances blockchain security by identifying vulnerabilities in smart contracts through expert analysis. Their skilled penetration testers conduct thorough evaluations to uncover potential exploits. Additionally, they provide transaction risk monitoring to track user funds, ensuring users' confidence and safeguarding assets within the decentralized landscape.

ImmuneBytes From United States
12 Ffuf

Ffuf

Ffuf is a high-performance web fuzzing tool crafted in Go, designed for efficient vulnerability discovery. Users can execute fuzzing operations with customizable inputs and wordlists, making it adaptable for various testing scenarios. Ffuf’s unique features include virtual host discovery and real-time filtering options, enhancing its usability for security professionals.

GitHub From United States
13 BlackArch Fuzzer

BlackArch Fuzzer

BlackArch Fuzzer is a specialized tool within the BlackArch Linux pentesting distribution, designed to enhance security testing through fuzzing. It incorporates 83 unique packages that generate random inputs to probe software vulnerabilities, helping testers identify potential flaws and improve the robustness of applications by revealing unexpected behaviors during the testing process.

BlackArch From United States
14 Fuzzapi

Fuzzapi

Fuzzapi is an innovative tool designed for REST API penetration testing, leveraging the capabilities of the API_Fuzzer gem to enhance security assessments. This Rails application features a user-friendly interface, simplifying the interaction with the gem. Docker support further streamlines installation, making it accessible for security professionals.

GitHub From United States
15 Defensics Fuzz Testing

Defensics Fuzz Testing

The Defensics Fuzz Testing Tool automates the identification of defects and zero-day vulnerabilities in software without requiring source code. Users can leverage over 300 maintained fuzz testing suites, facilitating targeted testing across various protocols and file formats. Its flexible API allows seamless integration into diverse development workflows, enhancing security throughout the software lifecycle.

Black Duck From United States

Company Information

  • Company: secfigo
  • Country: United States

Top Awesome Fuzzing Features

  • Medical record management system
  • Offline access capabilities
  • Integrated billing tools
  • Credit card processing integration
  • Lab result tracking integration
  • Client communication tools
  • Multi-owner management feature
  • Controlled drug tracking
  • Real-time data updates
  • Comprehensive reporting features
  • Customizable pricing options
  • User-friendly interface
  • Streamlined data conversions
  • Ongoing customer support
  • Automated preventive care reminders
  • Access from any device
  • Seamless integrations with external systems
  • Audit trail for record-keeping
  • Quick turnaround data migration
  • Workflow optimization tools.