Best Android greybox fuzzing with AFL++ Frida mode Alternatives & Competitors in 2026

FYEO Custom Fuzz Testing

Custom blockchain fuzz testing service with bespoke harnesses & CI integration.

SecLists

SecLists is a comprehensive repository of security testing lists including usernames, passwords, URLs, fuzzing payloads, and web shells used during penetration testing and security assessments.

Android port of Radamsa

An Android port of the Radamsa fuzzing tool compiled with Android NDK to support Android ABIs for security testing on mobile platforms.

Offensive Docker

An image with commonly used tools for creating a pentest environment easily and quickly, with detailed instructions for launching in a VPS.

FuzzDB

FuzzDB is an open-source dictionary of attack patterns and predictable resource locations for dynamic application security testing and vulnerability discovery.

Boofuzz

Boofuzz is a network protocol fuzzing tool that aims to fuzz everything

WSSiP

A WebSocket Manipulation Proxy with a user interface to capture, intercept, and send custom messages for WebSocket and Socket.IO communications.

ffuf

Fast web fuzzer written in Go

IntruderPayloads

A collection of payloads and methodologies for web pentesting.

fuzz.txt

A GitHub repository for fuzzing and testing file formats

qsfuzz

qsfuzz is a rule-based fuzzing tool for testing query string parameters in web applications to identify security vulnerabilities.

vaf

A cross-platform web fuzzer written in Nim

dotdotpwn

A directory traversal fuzzer for finding and exploiting directory traversal vulnerabilities.

FDsploit

A Python-based tool that automates the identification and exploitation of file inclusion and directory traversal vulnerabilities in web applications.

Burp-LFI-tests

A collection of Local File Inclusion (LFI) vulnerability tests and exploitation techniques designed for use with Burp Suite.

SSRFmap

Automatic SSRF fuzzer and exploitation tool

ffufai

An AI-powered wrapper for ffuf that automatically suggests relevant file extensions for web fuzzing based on target URL analysis and response headers.

Burp Suite Professional

A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.

Synack Sara

AI-powered autonomous penetration testing platform with multi-agent system

XBOW Captcha Bypass Tool

AI-powered automated penetration testing platform for vulnerability discovery

FireCompass AI-powered Pen Testing

AI-powered automated pen testing & continuous red teaming platform

ImmuniWeb® On-Demand

ImmuniWeb® On-Demand is a web application penetration testing platform that combines AI-powered automation with manual security testing to provide comprehensive vulnerability assessments and compliance reporting.

ImmuniWeb® MobileSuite

ImmuniWeb MobileSuite is a mobile application penetration testing platform that combines AI-powered automation with manual security testing to assess mobile apps and their backend infrastructure for security vulnerabilities and compliance requirements.

Cyver Pentest Management Platform

Pentest management platform for reporting, project mgmt & client collaboration

PlexTrac Pentest Reporting

Pentest reporting & exposure mgmt platform for vulnerability remediation

Rapid7 Metasploit

Penetration testing software for simulating attacks and validating vulnerabilities

ImmuniWeb® Continuous Penetration Testing

Continuous pentesting service monitoring web apps & APIs for code changes

Vulnetic Penetration Testing

AI-powered automated penetration testing platform for web apps and networks

Aikido Attack

AI-powered automated penetration testing platform for on-demand security audits

XBOW Lightspeed

Autonomous web app pentesting platform with exploit validation

Simbian AI Agents

AI-powered autonomous pentesting platform for continuous security validation

Entersoft AI AST

Smart contract security audit service for DeFi blockchain platforms

Faraday Faraday All-in-One

Modular offensive security platform for continuous monitoring and testing

Prancer SwarmHack™ AI Pentesting

AI-native multi-agent pentesting engine for autonomous vulnerability discovery

Prancer AI-Native Pentesting

AI-driven autonomous pentesting platform for continuous vulnerability discovery

Ampcus Agentic AI

Autonomous AI system for continuous penetration testing and exploit validation

Happiest Minds ThreatVigil 2.0

Cloud-based penetration testing platform for threat mgmt & remediation

Kaseya Network Penetration Testing Tool

Automated network penetration testing tool for internal and external attacks

Xiarch Binary Code Analysis

Binary code analysis service for security testing compiled applications

CurlSek Intelligence Suite

Continuous pentesting platform with autonomous AI agents for web apps and APIs

Terra Agentic AI Platform

AI-powered continuous pentesting platform with agentic automation

Veria Labs

AI-powered continuous pentesting that finds and fixes vulnerabilities

MindTheHack Platform

AI-driven pentesting platform with white hat hacker community support

NodeZero

Autonomous pentesting platform for internal, external, cloud & K8s testing

Advanced Data Pilfering

Autonomous pentesting platform for data exfiltration testing & validation

Hacktron CLI

AI-powered autonomous vulnerability hunter with CLI and platform interfaces

Web Application Penetration Testing​

Real-world web app testing to uncover logic flaws, access gaps, and hidden risks.

CredShields Smart Contract Audits

Smart contract audit service combining AI scanning and manual code review