Witcher
Web fuzzer
A framework for fuzzing web applications to detect vulnerabilities like command and SQL injection
Witcher is the first framework for using AFL to fuzz web applications.
78 stars
23 watching
18 forks
Language: C
last commit: about 1 year ago
Linked from 1 awesome list
cpuu/awesome-fuzzingRelated projects:
| Repository | Description | Stars |
|---|---|---|
 shouc/corbfuzz | Fuzz testing tool to check browser security policies and detect vulnerabilities in web applications | 3 |
 stephenfewer/grinder | Automates fuzz testing of web browsers and manages crashes to help identify security vulnerabilities | 416 |
 andresriancho/websocket-fuzzer | Automates the process of sending WebSocket messages to test application vulnerabilities | 144 |
 ameenmaali/qsfuzz | A tool to help identify vulnerabilities in web applications by fuzzing query strings with custom rules. | 297 |
 henshin/filebuster | A fast and flexible web application testing tool that uses brute-force methods to discover vulnerabilities | 213 |
 sycuricon/morfuzz | A fuzzing framework for detecting functional bugs in RISC-V processors | 25 |
 google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,110 |
 zigrin-security/cakefuzzer | An automated tool designed to discover vulnerabilities in web applications by combining static and dynamic testing approaches. | 98 |
 jtpereyda/boofuzz | A tool for generating and testing network protocol inputs to identify vulnerabilities | 2,057 |
 status-im/nim-drchaos | A fuzzing framework for testing C/C++/Obj-C targets by generating random inputs to induce crashes or verify invariants. | 68 |
 forallsecure/graphfuzz | A framework for building fuzzing tools to test C++ libraries' APIs by constructing and executing dataflow graphs of function calls and object dependencies. | 9 |
 rootup/bfuzz | Automates browser testing with generated input payloads to identify vulnerabilities | 309 |
 s3team/squirrel | A tool that generates random inputs to test the robustness of database management systems | 188 |
 momalab/icsfuzz | A tool used to test security vulnerabilities in industrial control systems by injecting random data into their application code. | 26 |
 redteampentesting/monsoon | A tool that sends HTTP requests in a fast and controlled manner to discover or test vulnerabilities in web applications. | 464 |