There are 10 repositories under fuzz topic.
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Collection of quality safety articles. Awesome articles.
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...
Dictionary sets often used in penetration testing work
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
1337 Wordlists for Bug Bounty Hunting
Fuzz your Rust code with Google-developed Honggfuzz !
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows
🎯 Directory Payload List
Small but effective wordlist for brute-forcing and discovering hidden things.
Fuzz testing framework for Solana programs written in Anchor
Domain name permutation engine for detecting typo squatting, phishing and corporate espionage
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
📚 An ultimate collection wordlists of the best-known CMS
Fuzzy search text / notes in the terminal, for any collection of text files
A python3 intruder that gave me bounties, easy to use and as fast as fuff
Fuzzing with the generated argument
XNU Image Fuzzer - iOS App for Fuzzing Images with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw Data and String Injection.