OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
☆110Dec 6, 2022Updated 3 years ago
Alternatives and similar repositories for TnT-Fuzzer
Users that are interested in TnT-Fuzzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆466Mar 6, 2025Updated last year
- Identify vulnerabilities in your API's using the OpenAPI Security Scanner☆12Dec 6, 2018Updated 7 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆187Oct 27, 2022Updated 3 years ago
- The DevSecOps toolset for REST APIs☆277Jan 13, 2023Updated 3 years ago
- PatchFuzz: Fuzzing for JavaScript Engine Incomplete Security Patches☆19Dec 17, 2025Updated 3 months ago
- INACTIVE - http://mzl.la/ghe-archive - A Python3 bridge for implementing custom libFuzzer mutators☆74May 24, 2019Updated 6 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆227May 9, 2024Updated last year
- ☆16Dec 22, 2019Updated 6 years ago
- Source code of MEUZZ fuzzer☆46Dec 11, 2021Updated 4 years ago
- BigMap integration on AFL++☆15Apr 5, 2021Updated 4 years ago
- CVE-2020-25223☆11Sep 13, 2021Updated 4 years ago
- Fuzz test Python modules with libFuzzer☆22Mar 20, 2022Updated 4 years ago
- Browser based rce for iOS <= 14.3☆10May 26, 2025Updated 9 months ago
- Greybox fuzzer for optimizing function coverage and finding low-level vulnerabilities in C programs☆38Feb 22, 2019Updated 7 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆40Mar 15, 2021Updated 5 years ago
- ☆47May 18, 2020Updated 5 years ago
- Scraping creds using Github API and truffleHog☆11Dec 13, 2023Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 9 months ago
- AFL++ using the Ball-Larus path profiling algorithm for coverage feedback☆15Oct 31, 2022Updated 3 years ago
- ☆17Feb 19, 2025Updated last year
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago
- This is an example library to show how to fuzz with AFL++ only the code modified by the last commit.☆17Mar 2, 2020Updated 6 years ago
- Dockerfile for AFL++ and helpful other tools☆21May 5, 2020Updated 5 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆99Dec 30, 2019Updated 6 years ago
- A multi-target URL bruteforcer☆22Aug 6, 2018Updated 7 years ago
- Kentico <=12.0.14 is vulnerable to a remote code execution via the SyncServer☆10Sep 28, 2020Updated 5 years ago
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 3 months ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆407Jul 16, 2017Updated 8 years ago
- Pythia (extends AFL with Predictions)☆66Jun 18, 2021Updated 4 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Nov 18, 2019Updated 6 years ago
- Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!☆576Jan 29, 2024Updated 2 years ago
- These are the scripts & methodologies that can be used in Buffer Over Flow Fuzzing and Exploitation☆18Oct 3, 2021Updated 4 years ago
- ☆27Dec 20, 2022Updated 3 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆492May 13, 2023Updated 2 years ago
- ☆172Apr 28, 2021Updated 4 years ago
- Removes duplicate entries from a file, resulting in only unique parameter combinations. Useful for parsing waybackurls and making recon m…☆11May 31, 2020Updated 5 years ago
- SanitizerCoverage hooks and coverage reports for user-mode QEMU☆12Nov 3, 2019Updated 6 years ago
- A simple bug bounty utility tool to remove uninteresting entries from a list of URLs.☆14Jul 22, 2024Updated last year
- ☆43Mar 2, 2026Updated 3 weeks ago