qsfuzz
Fuzzer
A tool to help identify vulnerabilities in web applications by fuzzing query strings with custom rules.
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
296 stars
7 watching
36 forks
Language: Go
last commit: almost 2 years ago
Linked from 1 awesome list
bugbountyfuzzinfosecsecurityvulnerability-detection
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 momalab/icsfuzz | Fuzzes control applications to uncover vulnerabilities | 26 |
 devanshbatham/openredirex | A tool for detecting open redirect vulnerabilities in web applications by modifying URLs and attempting to fetch them. | 712 |
 redteampentesting/monsoon | A tool that sends HTTP requests in a fast and controlled manner to discover or test vulnerabilities in web applications. | 460 |
 henshin/filebuster | A fast and flexible web application testing tool that uses brute-force methods to discover vulnerabilities | 212 |
 stephenfewer/grinder | Automates fuzz testing of web browsers and manages crashes to help identify security vulnerabilities | 415 |
 jtpereyda/boofuzz | A tool for generating and testing network protocol inputs to identify vulnerabilities | 2,041 |
 rootup/bfuzz | Automates browser testing with generated input payloads to identify vulnerabilities | 309 |
 danmcinerney/fuzzstrings | A collection of pre-defined strings to test web application vulnerabilities | 32 |
 sefcom/witcher | A framework for fuzzing web applications to detect vulnerabilities like command and SQL injection | 77 |
 andresriancho/websocket-fuzzer | Automates the process of sending WebSocket messages to test application vulnerabilities | 144 |
 withsecureopensource/mqtt_fuzz | A tool to test and identify vulnerabilities in MQTT protocol implementations by sending pre-defined sequences of control packets. | 77 |
 fuzzinglabs/cairo-fuzzer | A tool for testing smart contract security by generating random inputs and executing them on a contract to identify vulnerabilities. | 118 |
 google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,108 |
 googleprojectzero/fuzzilli | A fuzzer for dynamic language interpreters designed to detect core interpreter bugs | 1,890 |
 chijinz/minerva | A tool that generates realistic browser API invocations by analyzing memory-level mod-ref relations and applying weighted selection during test case generation. | 31 |