Boofuzz Logo

Boofuzz

0
Free
Visit Website

Boofuzz is a fork of and the successor to the venerable Sulley fuzzing framework. Besides numerous bug fixes, boofuzz aims for extensibility. The goal: fuzz everything. Features: * Easy and quick data generation. * Instrumentation – AKA failure detection. * Target reset after failure. * Recording of test data. * Online documentation. * Support for arbitrary communications mediums. * Built-in support for serial fuzzing, ethernet- and IP-layer, UDP broadcast. * Better recording of test data -- consistent, thorough, clear. * Test result CSV export. * Extensible instrumentation/failure detection. * Much easier install experience! * Far fewer bugs.

FEATURES

ALTERNATIVES

A cheat sheet providing examples of creating reverse shells for penetration testing.

Automatic tool for DNS rebinding-based SSRF attacks

A tool for interacting with the MSBuild API, enabling malicious activities and evading detection.

Cutting-edge open-source security tools for adversary simulation and threat hunting.

A tool for performing hash length extension attacks against multiple hashing algorithms.

Emulate offensive attack techniques in the cloud with a self-contained Go binary.

A visual guide illustrating attack paths and techniques for exploiting vulnerabilities in GitHub Actions configurations.

Weaponize Word documents with PowerShell Empire using the Microsoft DDE exploit.