A grey-box web application Fuzzer
☆25Aug 16, 2024Updated last year
Alternatives and similar repositories for webFuzz
Users that are interested in webFuzz are comparing it to the libraries listed below
Sorting:
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆76Aug 15, 2024Updated last year
- Testability Pattern Catalogs for SAST☆32Feb 18, 2025Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆37Apr 21, 2020Updated 5 years ago
- springboot getRequestURI acl bypass☆37Oct 13, 2020Updated 5 years ago
- Link: Black-Box Detection of Cross-Site Scripting Vulnerabilities Using Reinforcement Learning☆25Apr 28, 2022Updated 3 years ago
- Holistic Greybox Fuzzing of Multi-Language Systems☆27Oct 15, 2022Updated 3 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆98Nov 27, 2023Updated 2 years ago
- ☆30Aug 30, 2022Updated 3 years ago
- Collection of vulnerable and fixed PHP synthetic test cases☆66Oct 15, 2023Updated 2 years ago
- Hsuan-Fuzz: REST API Fuzzing by Coverage Level Guided Blackbox Testing☆29May 14, 2022Updated 3 years ago
- CVE-2020-4464 / CVE-2020-4450☆35Aug 24, 2021Updated 4 years ago
- 一个中文版本的 LibAFL 笔记,主要内容是 LibAFL 原理相关的内容,同时也附加一些 LibAFL 使用方面的 tips ,方便查阅和参考。☆35Nov 22, 2023Updated 2 years ago
- Generate PPT via a simple summary☆13Oct 28, 2018Updated 7 years ago
- Witcher is the first framework for using AFL to fuzz web applications.☆103Nov 28, 2023Updated 2 years ago
- 常用CTF爆破字典整理☆14Apr 8, 2023Updated 2 years ago
- My home server infrastructure as code☆16Updated this week
- LLM-powered tool that enhances OpenAPI specifications by extracting machine-readable constraints from human-readable descriptions.☆14Nov 6, 2024Updated last year
- Libraries for PSP2☆12Oct 15, 2015Updated 10 years ago
- An SMT Solver for string constraints☆48Feb 10, 2026Updated 2 weeks ago
- It is a RESTful API fuzzer.☆12Jun 20, 2024Updated last year
- Search models fast in Django Admin UI☆15Apr 30, 2021Updated 4 years ago
- go client for the wazuh rest api☆12Nov 1, 2025Updated 3 months ago
- ☆11Jun 5, 2022Updated 3 years ago
- ☆11Sep 7, 2023Updated 2 years ago
- TP-Framework: Testability Pattern Framework for SAST☆15May 10, 2024Updated last year
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 8 months ago
- R Package 📦 to Generate mock data with the Mockaroo API☆12May 10, 2018Updated 7 years ago
- Post-Exploitation methods inside any extension, Presented @DEFCON29: "Extension-Land exploits and rootkits in your browser extensions".☆11Nov 29, 2021Updated 4 years ago
- Boxtin is a customizable Java security manager agent.☆13Updated this week
- YuraScanner☆73Feb 13, 2025Updated last year
- This module detects HTTP requests that are non RFC compliant and used for smuggling☆12Mar 16, 2023Updated 2 years ago
- ☆10Jun 11, 2018Updated 7 years ago
- ☆12Updated this week
- ☆10Sep 9, 2015Updated 10 years ago
- Webshell检测数据集,收集了PHP、JSP、ASP的正常开源代码样本以及恶意Webshell样本。可供Webshell检测研究使用。☆17Dec 11, 2023Updated 2 years ago
- ☆14May 22, 2024Updated last year
- ☆18Nov 6, 2024Updated last year
- The C4 Concurrent C Fuzzer☆14Nov 2, 2023Updated 2 years ago
- Sample JavaFX WebView application for full featured debugging with Chrome Dev Tools☆14Jan 4, 2022Updated 4 years ago