FuzzDB Logo

FuzzDB

0
Free
Visit Website

FuzzDB was created to increase the likelihood of finding application security vulnerabilities through dynamic application security testing. It's the first and most comprehensive open dictionary of fault injection patterns, predictable resource locations, and regex for matching server responses. Attack Patterns - FuzzDB contains comprehensive lists of attack payload primitives for fault injection testing. These patterns, categorized by attack and where appropriate platform type, are known to cause issues like OS command injection, directory listings, directory traversals, source exposure, file upload bypass, authentication bypass, XSS, http header crlf injections, SQL injection, NoSQL injection, and more. Discovery - The popularity of standard software packaging distribution formats and installers resulted in resources like logfiles and administrative directories frequently being located in a small number of predictable locations. FuzzDB contains a comprehensive dictionary, sor

FEATURES

ALTERNATIVES

Linux privilege escalation auditing tool for detecting security deficiencies in Linux kernels.

A vulnerability management platform that centralizes security assessment workflows, integrates multiple security tools, and provides collaboration features for security teams.

Vulnerable Android application for learning security concepts.

Automate the search for Exploits and Vulnerabilities in important databases.

DOM-based XSS vulnerability scanner

kube-hunter hunts for security weaknesses in Kubernetes clusters.

A tool that automatically audits website security by crawling an entire website and identifying vulnerabilities

A community website for API security news, vulnerabilities, and best practices

PINNED