qsfuzz
Fuzzer
A tool to help identify vulnerabilities in web applications by fuzzing query strings with custom rules.
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
297 stars
8 watching
36 forks
Language: Go
last commit: almost 2 years ago
Linked from 1 awesome list
bugbountyfuzzinfosecsecurityvulnerability-detection
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 momalab/icsfuzz | A tool used to test security vulnerabilities in industrial control systems by injecting random data into their application code. | 26 |
 devanshbatham/openredirex | A tool for detecting open redirect vulnerabilities in web applications by modifying URLs and attempting to fetch them. | 718 |
 redteampentesting/monsoon | A tool that sends HTTP requests in a fast and controlled manner to discover or test vulnerabilities in web applications. | 464 |
 henshin/filebuster | A fast and flexible web application testing tool that uses brute-force methods to discover vulnerabilities | 213 |
 stephenfewer/grinder | Automates fuzz testing of web browsers and manages crashes to help identify security vulnerabilities | 416 |
 jtpereyda/boofuzz | A tool for generating and testing network protocol inputs to identify vulnerabilities | 2,057 |
 rootup/bfuzz | Automates browser testing with generated input payloads to identify vulnerabilities | 309 |
 danmcinerney/fuzzstrings | A collection of pre-defined strings to test web application vulnerabilities | 32 |
 sefcom/witcher | A framework for fuzzing web applications to detect vulnerabilities like command and SQL injection | 78 |
 andresriancho/websocket-fuzzer | Automates the process of sending WebSocket messages to test application vulnerabilities | 144 |
 withsecureopensource/mqtt_fuzz | A tool to test and identify vulnerabilities in MQTT protocol implementations by sending pre-defined sequences of control packets. | 77 |
 fuzzinglabs/cairo-fuzzer | A tool for testing smart contract security by generating random inputs and executing them on a contract to identify vulnerabilities. | 120 |
 google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,110 |
 googleprojectzero/fuzzilli | Automates the process of finding bugs in JavaScript engines by generating random code and testing it for errors | 1,896 |
 chijinz/minerva | A tool that generates realistic browser API invocations by analyzing memory-level mod-ref relations and applying weighted selection during test case generation. | 31 |