Python Fuzzing

Open-source Python projects categorized as Fuzzing
Edit details
Topics: Security Python Fuzzer Pentesting Testing
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

Top 23 Python Fuzzing Projects

  • dirsearch

    Web path scanner

    • Project mention: Looking for some help with this Python package | /r/learnpython | 2023-08-19

    I am new to Python. With the help of several users (thanks u/Diapolo10 and u/shiftybyte)I've been able to install Python and the dirsearch package. Dirsearch (https://github.com/maurosoria/dirsearch) allows for checking website paths with a wordlist. For example, I have a wordlist file with words like "dog", "cat", "bird", etc and I want to check the validity of those words as extensions on a website. Something like "example.com/bird", "example.com/cat", etc. I have a test wordlist in the same directory as dirsearch, but I am confused on how to proceed with the commands. I want to have it check my wordlist as extensions on the example.com website and then save output on if the webpath is valid or not. Just need a little bit of help.

  • hypothesis

    Hypothesis is a powerful, flexible, and easy to use library for property-based testing.

    • Project mention: Hypothesis | news.ycombinator.com | 2024-02-01

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • clusterfuzz

    Scalable fuzzing infrastructure.

    • Project mention: Fuzzing Ladybird with tools from Google Project Zero | news.ycombinator.com | 2024-03-16

    https://github.com/google/clusterfuzz

    At least Chromium has integrated multiple different fuzzers into their regular development workflow and found lots of bugs even before going public.

  • dnstwist

    Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

    • Project mention: Have I Been Squatted? | news.ycombinator.com | 2023-11-27

  • Raccoon

    A high performance offensive security tool for reconnaissance and vulnerability scanning

  • boofuzz

    A fork and successor of the Sulley Fuzzing Framework

  • Coercer

    A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  • CrossHair

    An analysis tool for Python that blurs the line between testing and type systems.

  • recollapse

    REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

    • Project mention: The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research) | /r/SaaS | 2023-05-22

    REcollapse

  • deepstate

    A unit test-like interface for fuzzing and symbolic execution

  • netzob

    Netzob: Protocol Reverse Engineering, Modeling and Fuzzing

  • FirmWire

    FirmWire is a full-system baseband firmware emulation platform for fuzzing, debugging, and root-cause analysis of smartphone baseband firmwares

  • oss-fuzz-gen

    LLM powered fuzzing via OSS-Fuzz.

    • Project mention: Google/OSS-fuzz-gen: LLM powered fuzzing via OSS-Fuzz | news.ycombinator.com | 2024-02-03

  • FormatFuzzer

    FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.

  • fuzz-introspector

    Fuzz Introspector -- introspect, extend and optimise fuzzers

    • Project mention: Automated Unit Test Improvement Using Large Language Models at Meta | news.ycombinator.com | 2024-02-17

    https://google.github.io/oss-fuzz/research/llms/target_gener... https://security.googleblog.com/2023/08/ai-powered-fuzzing-b... https://hn.algolia.com/?q=AI-Powered+Fuzzing%3A+Breaking+the...

    OSSF//fuzz-introspector//doc/Features.md: https://github.com/ossf/fuzz-introspector/blob/main/doc/Feat...

    https://scholar.google.com/scholar?hl=en&as_sdt=0%2C43&q=Fuz... :

    - "Large Language Models Based Fuzzing Techniques: A Survey" (2024) https://arxiv.org/abs/2402.00350 :

  • grammarinator

    ANTLR v4 grammar-based test generator

  • fuzzware

    Fuzzware's main repository. Start here to install.

  • frelatage

    Coverage-based fuzzer for python applications

  • peafl64

    Static Binary Instrumentation tool for Windows x64 executables

  • pastis

    PASTIS: Collaborative Fuzzing Framework

  • subzuf

    a smart DNS response-guided subdomain fuzzer

  • SourceWolf

    Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

  • kitsec-core

    Ethical hacking, made easy.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python Fuzzing related posts

Index

What are some of the best open-source Fuzzing projects in Python? This list will help you:

Project Stars
1 dirsearch 11,271
2 hypothesis 7,303
3 clusterfuzz 5,206
4 dnstwist 4,559
5 Raccoon 2,993
6 boofuzz 1,965
7 Coercer 1,567
8 CrossHair 952
9 recollapse 837
10 deepstate 806
11 netzob 747
12 FirmWire 717
13 oss-fuzz-gen 691
14 FormatFuzzer 384
15 fuzz-introspector 347
16 grammarinator 328
17 fuzzware 293
18 frelatage 230
19 peafl64 172
20 pastis 147
21 subzuf 143
22 SourceWolf 139
23 kitsec-core 135

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com