EvoMaster is an AI-driven tool for automatically generating system-level test cases for web and enterprise applications. It focuses on fuzzing Web APIs, including REST, GraphQL, and RPC (e.g., gRPC and Thrift). Key features: 1. Supports both black-box and white-box testing modes 2. Generates test cases in various formats (JUnit, Python, JavaScript) 3. Uses evolutionary algorithms and dynamic program analysis 4. Detects faults and generates regression test suites 5. Handles SQL databases and authentication mechanisms 6. Supports OpenAPI/Swagger schemas for REST APIs EvoMaster can be used for: - Automated API testing - Vulnerability detection - Code coverage improvement - Regression test suite generation The tool is particularly effective for JVM-based applications in white-box mode, offering advanced features like bytecode analysis and testability transformations.
FEATURES
ALTERNATIVES
A Windows Kernel driver intentionally vulnerable to help improve skills in kernel-level exploitation.
The Contrast Runtime Security Platform is a suite of application security tools that integrates security into the software development lifecycle and production environments, including IAST, SAST, RASP, and SCA capabilities.
YLS Language Server for YARA Language with comprehensive features and Python 3.8 support.
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
A deliberately weak and insecure implementation of GraphQL for testing and practicing GraphQL security
A free online tool that scans and fixes common security issues in WordPress websites.
An open-source tool for detecting and analyzing Android apps' vulnerabilities and security issues.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.