Tag Archives | fuzzer

Powerfuzzer – Automated Customizable Web Fuzzer

March 13, 2017 | 1,557 views

Powerfuzzer is a highly automated and fully customizable web fuzzer (HTTP protocol based application fuzzer) based on many other Open Source fuzzers available and information gathered from numerous security resources and websites. It was designed to be user-friendly, modern, effective and to work consistently. It is also designed and coded to be modular and extendable, […]

Share42

+16

Share42

Shares 90

Tags: customizable fuzzer, customizable web fuzzer, fuzzer, fuzzing, fuzzing-tool, hacking, Hacking Tools, power fuzzer, powerfuzzer, web fuzzer, web fuzzing tool

Posted in: Exploits/Vulnerabilities, Hacking Tools, Programming | Add a Comment

american fuzzy lop – Security Oriented Fuzzing Tool

November 21, 2015 | 2,123 views

American fuzzy lop is a security-oriented fuzzing tool that employs a novel type of compile-time instrumentation and genetic algorithms to automatically discover clean, interesting test cases that trigger new internal states in the targeted binary. This substantially improves the functional coverage for the fuzzed code. The compact synthesized corpora produced by the tool are also […]

Share43

+15

Share43

Shares 91

Tags: afl, afl fuzzing, afl-fuzz, afl-fuzzer, american fuzzy lop, binary fuzzing, fuzzer, fuzzing, fuzzing-tool, lcamtuf

Posted in: Hacking Tools, Programming | Add a Comment

Dharma – Generation-based Context-free Grammar Fuzzing Tool

July 21, 2015 | 1,341 views

Dharma is a tool used to create test cases for fuzzing of structured text inputs, such as markup and script. It takes a custom high-level grammar format as input, and produces random well-formed test cases as output – it can be used as a grammar fuzzing tool. API programming is complex and subtle programming mistakes […]

Shares 142

Tags: api fuzzer, dharma, fuzzer, fuzzing, fuzzing api grammar, fuzzing apis, fuzzing tools, grammar based fuzzer, mozilla

Posted in: Exploits/Vulnerabilities, Hacking Tools, Programming | Add a Comment

zzuf – Multi-Purpose Application Input Fuzzing Tool

May 26, 2015 | 1,893 views

zzuf is a transparent application input fuzzing tool or fuzzer. Its purpose is to find bugs in applications by corrupting their user-contributed data (which more than often comes from untrusted sources on the Internet). It works by intercepting file and network operations and changing random bits in the program’s input. zzuf’s behaviour is deterministic, making […]

Shares 230

Tags: app fuzzing, application fuzzing, application input fuzzing, fuzz media player, fuzz user input, fuzzer, fuzzing, fuzzing-tool, zzuf

Posted in: Hacking Tools, Programming | Add a Comment

CERT Failure Observation Engine (FOE) – Mutational Fuzzing Tool

January 8, 2013 | 1,414 views

The CERT Failure Observation Engine (FOE) is a software testing tool that finds defects in applications that run on the Windows platform. FOE performs mutational fuzzing on software that consumes file input. (Mutational fuzzing is the act of taking well-formed input data and corrupting it in various ways, looking for cases that cause crashes.) The […]

Shares 56

Tags: CERT, cert foe, failure observation engine, fuzzer, fuzzing, fuzzing tools, fuzzing windows, fuzzing-tool, windows fuzzing tool

Posted in: Exploits/Vulnerabilities, Programming | Add a Comment

Basic Fuzzing Framework (BFF) From CERT – Linux & Mac OSX Fuzzer Tool

May 8, 2012 | 2,018 views

The CERT Basic Fuzzing Framework (BFF) is a software testing tool that finds defects in applications that run on the Linux and Mac OS X platforms. BFF performs mutational fuzzing on software that consumes file input. (Mutational fuzzing is the act of taking well-formed input data and corrupting it in various ways, looking for cases […]

Shares 83

Tags: basic fuzzing framework, CERT, fuzzer, fuzzer tool, fuzzing, fuzzing tool for mac osx, fuzzing-framework, mac fuzzing tool, mac osx fuzzer, mutational fuzzing, software defects, tool for fuzzing

Posted in: Hacking Tools, Programming | Add a Comment

backfuzz – Multi-Protocol Fuzzing Toolkit (Supports HTTP/FTP/IMAP etc)

March 16, 2012 | 6,286 views

backfuzz is a fuzzing tool for different protocols (FTP, HTTP, IMAP, etc) but also has no-protocol plug-ins (Example: File Fuzzer). The general idea is that this script has several functions already predefined in the file “functions.py”, so whoever wants to write their own plugin’s (for another protocol) you can do so in a few lines […]

Shares 53

Tags: fuzz, fuzz tool, fuzzer, fuzzing, fuzzing software, fuzzing toolkit, fuzzing-framework, network-fuzzer, protocol fuzzer, protocol fuzzing software

Posted in: Exploits/Vulnerabilities, Programming | Add a Comment

WebSurgery – Web Application Security Testing Suite

August 29, 2011 | 60,398 views

WebSurgery is a suite of tools for security testing of web applications. It was designed for security auditors to help them with the web application planning and exploitation. Currently, it uses an efficient, fast and stable Web Crawler, File/Dir Brute forcer, Fuzzer for advanced exploitation of known and unusual vulnerabilities such as SQL Injection, Cross […]

Shares 68

Tags: fuzzer, hacking tool, Hacking Tools, sql-injection, sql-injection-tool, web application security testing suite, Web Hacking, web-application-security, web-application-security-testing, web-hacking-tool, websurgery

Posted in: Hacking Tools, Web Hacking | Add a Comment

CAT – Web Application Security Test & Assessment Tool

March 24, 2011 | 9,255 views

CAT is designed to facilitate manual web application penetration testing for more complex, demanding application testing tasks. It removes some of the more repetitive elements of the testing process, allowing the tester to focus on individual applications, thus enabling them to conduct a much more thorough test. Conceptually it is similar to other proxies available […]

Share7

Tweet45

Share18

Shares 70

Tags: application test tool, application testing, cat, context, context application test tool, fuzzer, fuzzing, local proxy tool, security testing tool, web application security tool, Web Hacking, web proxy tool, web-application-security, web-hacking-tool, web-proxy

Posted in: Hacking Tools, Programming, Web Hacking | Add a Comment

cross_fuzz – A Cross-Document DOM Binding Fuzzer

January 5, 2011 | 10,661 views

cross_fuzz is an amazingly effective but notoriously annoying cross-document DOM binding fuzzer that helped identify about one hundred bugs in all browsers on the market – many of said bugs exploitable – and it is still finding more. The fuzzer owes much of its efficiency to dynamically generating extremely long-winding sequences of DOM operations across […]

Share1

Tweet10

Share1

Shares 12

Tags: browser fuzzing, cross_fuzz, dom fuzzer, dom fuzzing tool, fuzzer, fuzzer tool, fuzzing, fuzzing browsers, fuzzing dom objects, fuzzing-tool, lcamtuf, michal-zalewski