OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
☆110Dec 6, 2022Updated 3 years ago
Alternatives and similar repositories for TnT-Fuzzer
Users that are interested in TnT-Fuzzer are comparing it to the libraries listed below
Sorting:
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆466Mar 6, 2025Updated 11 months ago
- Identify vulnerabilities in your API's using the OpenAPI Security Scanner☆12Dec 6, 2018Updated 7 years ago
- The DevSecOps toolset for REST APIs☆278Jan 13, 2023Updated 3 years ago
- ☆13Oct 3, 2023Updated 2 years ago
- This is an example library to show how to fuzz with AFL++ only the code modified by the last commit.☆17Mar 2, 2020Updated 6 years ago
- PatchFuzz: Fuzzing for JavaScript Engine Incomplete Security Patches☆19Dec 17, 2025Updated 2 months ago
- INACTIVE - http://mzl.la/ghe-archive - A Python3 bridge for implementing custom libFuzzer mutators☆74May 24, 2019Updated 6 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 8 months ago
- BigMap integration on AFL++☆15Apr 5, 2021Updated 4 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆226May 9, 2024Updated last year
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆187Oct 27, 2022Updated 3 years ago
- ☆16Dec 22, 2019Updated 6 years ago
- AFL++ using the Ball-Larus path profiling algorithm for coverage feedback☆15Oct 31, 2022Updated 3 years ago
- Source code of MEUZZ fuzzer☆46Dec 11, 2021Updated 4 years ago
- Dockerised Version of Frida☆21May 10, 2023Updated 2 years ago
- ☆47May 18, 2020Updated 5 years ago
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Mar 12, 2020Updated 5 years ago
- Extract endpoints from specific Git repository for fuzzing☆23Nov 3, 2020Updated 5 years ago
- Perform OSINT on external targets using Shodan☆23Feb 7, 2024Updated 2 years ago
- Dockerfile for AFL++ and helpful other tools☆21May 5, 2020Updated 5 years ago
- Greybox fuzzer for optimizing function coverage and finding low-level vulnerabilities in C programs☆38Feb 22, 2019Updated 7 years ago
- ☆172Apr 28, 2021Updated 4 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆99Dec 30, 2019Updated 6 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆120Sep 27, 2021Updated 4 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆492May 13, 2023Updated 2 years ago
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.☆10Apr 8, 2024Updated last year
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆40Mar 15, 2021Updated 4 years ago
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 3 months ago
- Patch to enable KGDBOC via Serial over USB. And debug Samsung Android Kernels.☆24Jun 29, 2019Updated 6 years ago
- Pythia (extends AFL with Predictions)☆66Jun 18, 2021Updated 4 years ago
- ☆27Dec 20, 2022Updated 3 years ago
- AFL++(2.63c/2.65c) + aflsmart(5ad7ea3)☆11Oct 20, 2020Updated 5 years ago
- ☆13Oct 14, 2016Updated 9 years ago
- Kentico <=12.0.14 is vulnerable to a remote code execution via the SyncServer☆10Sep 28, 2020Updated 5 years ago
- ☆15May 6, 2021Updated 4 years ago
- CVE-2020-25223☆11Sep 13, 2021Updated 4 years ago
- Laniakea is a utility for managing instances at various cloud providers and aids in setting up a fuzzing cluster.☆27Jun 1, 2021Updated 4 years ago
- Ares RedTeam_Box 是一款面相非初�级网络渗透者,可高度自定义化的工具。☆31Feb 18, 2021Updated 5 years ago