Security Testing
Showing 31 of 103 projects
An automated security testing toolkit for GraphQL endpoints that discovers, analyzes, and scores vulnerabilities.
A GUI tool for simulating, learning, and fuzzing UDS (Unified Diagnostic Services) on vehicle CAN buses for security testing and training.
A collection of French and English wordlists specifically curated for cracking French passwords.
An automatic bug-finding tool for C, C++, Go, Rust, and Zig using WebAssembly-level symbolic execution.
A Python wrapper for Android APK decompilation that simplifies extracting Java source code with multiple backend tools.
A fuzzing tool for discovering vulnerabilities in Android native system services through automated interface analysis and testing.
A USB proxy for intercepting and modifying USB traffic between devices and hosts, enabling security testing and device emulation.
A state-of-the-art file system fuzzer for Linux that explores both image and syscall input spaces simultaneously to find memory corruptions.
A command-line tool for macOS persistence mechanism emulation, designed for threat hunters and security testing.
A low-level Python library for HTTP/2 single packet attacks and timing attacks using Scapy.
A Windows tool for malware researchers to explore and test anti-debug techniques across modern debuggers.
A CLI tool and library for executing padding oracle attacks with concurrent network requests and an elegant UI.
A coverage-guided fuzzer for database management systems (DBMSs) that uses language validity and coverage feedback.
A network packet capture compiler for rapidly modeling and generating network traffic in hexdump or libpcap format.
A convolutional neural network model built with Keras for recognizing captcha images generated by the Laravel Captcha library.
An extensible fuzzing framework for finding semantic bugs in file systems like ext4, Btrfs, and F2FS.
A flexible and scriptable Python-based password dictionary generator supporting brute-force, combination, and complex rule modes.
A dependency-aware GraphQL API fuzzing tool that automatically generates and executes security tests based on schema introspection.
A Python framework for automating Mobile Application Penetration Testing (MAPT) activities and interacting with Android devices.
A comprehensive collection of 317 hashcat rule files for password cracking and security testing.
Uses Canny edge detection and OpenCV to locate puzzle pieces in slide-based CAPTCHAs for automated solving.
A collection of tools and examples for fuzzing Android applications using AFL++ with Frida mode.
A Chromium-based web browser with built-in XSS detection and taint tracking capabilities for security testing.
A type-aware kernel fuzzing framework for Windows that uses static binary analysis to infer system call types for more effective fuzzing.
A Python script that implements security testing attacks against AWS Cognito, including account oracle and privilege escalation.
A wordlist generator for security testing that creates permutations of known data to crack tokens.
A framework for using AFL to fuzz web applications and detect SQL/command injection vulnerabilities.
An automated IAST fuzzer for discovering vulnerabilities in CakePHP web applications with minimal false positives.
A Python framework for generating synthetic log events without requiring actual infrastructure or actions.
A neural network-based password cracking tool using character-level RNNs to learn and generate password guesses.
Android security testing tool that bypasses signature and permission checks for inter-process communications.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.